Why Medical Couriers Never Qualify as Conduits Under HIPAA
Medical couriers never qualify as conduits under HIPAA because they are considered to have “operational [...]
The HIPAA Guide - Celebrating Over 15 Years Online
HIPAA Advice Articles
Explore our comprehensive collection of articles dedicated to HIPAA compliance. This section provides in-depth insights and updates on the latest HIPAA regulations, healthcare data security, and privacy laws. Our articles are designed to help healthcare professionals and organizations stay informed about best practices for safeguarding patient information, avoiding costly breaches, and maintaining compliance with evolving HIPAA standards. Whether you are looking for advice on HIPAA training, breach reporting, or understanding the intricacies of patient privacy, you will find valuable guidance and resources here.
Do Business Associates need to Comply with HIPAA?
Business associates must comply with HIPAA when they create, receive, maintain, or transmit protected health [...]
What are PHI Best Practices?
Protected health information best practices require documented HIPAA Privacy Rule controls, HIPAA Security [...]
What is the HIPAA Emergency Exception?
The HIPAA Emergency Exception refers to events in which HIPAA’s legal requirements remain fully in force, [...]
OIG 7 Elements of an Effective Compliance Program
The Office of Inspector General’s 7 elements of an effective compliance program describe the core functions [...]
HIPAA Audit Checklist
A HIPAA audit checklist contains the following elements: a time-bound, scope-controlled document production [...]
HIPAA Compliance for Medical Spas
Medical spas that collect health histories, perform clinical treatments under licensed physician supervision, [...]
Who is a Business Associate under HIPAA?
A business associate under HIPAA is a person or organization that performs functions or activities on behalf [...]
What are the HIPAA Email Rules?
The HIPAA email rules are that covered entities and business associates must ensure the confidentiality, [...]
HIPAA Compliance Guide
This comprehensive HIPAA compliance guide provides information that can help organizations comply with the [...]
HIPAA Training for Students
Universities, teaching hospitals, and other post-secondary institutions that offer healthcare courses must [...]
HIPAA Encryption Requirements
The HIPAA encryption requirements are addressable implementation specifications that must be applied unless [...]
What are the HIPAA Telephone Rules?
The HIPAA telephone rules govern what information can be disclosed over the telephone by a member of a [...]
What is Considered as PHI Under HIPAA?
What is considered as PHI under HIPAA should be understood by all members of a covered entity’s or [...]
Examples of Unintentional HIPAA Violations
Examples of unintentional HIPAA violations only come to light when they result in notifiable data breaches [...]
HIPAA Risk Assessment
A HIPAA risk assessment is the cornerstone of any Covered Entity’s or Business Associate’s compliance [...]
HIPAA Security Rule
General Security Standards The Administrative, Technical and Physical Safeguards Responsibility for [...]
What is HIPAA Compliance Certification?
HIPAA compliance certification is typically a certificate of completion issued after finishing a HIPAA [...]
Is Zoom HIPAA Compliant?
Zoom can be HIPAA compliant, but only when healthcare organizations use the right Zoom healthcare offering, [...]
What is HIPAA Compliant Forms Software?
HIPAA compliant forms software is online form and workflow software that can safely collect, transmit, and [...]
What does Addressable mean Under the HIPAA Security Rule?
Addressable in the context of the HIPAA Security Rule refers to an implementation specification that requires [...]
Guide to HIPAA Incident Management
HIPAA incident management covers all stages of identifying and reporting an incident, tracking the incident, [...]
Healthcare Worker Background Checks
Healthcare worker background checks are most often required by state regulations rather than federal [...]
How to Plan for a HIPAA Incident Response
All HIPAA covered entities and business associates are required to plan for a HIPAA incident response in [...]
Is Telling a Story about a Patient a HIPAA Violation?
Whether telling a story about a patient is a HIPAA violation will depend on who is telling the story, the [...]
Is Emailing Patient Names Considered as a HIPAA Violation?
Emailing patient names is not considered as a HIPAA violation unless an email also contains unsecured [...]
How Does the HIPAA Privacy Rule Apply to Minors?
The HIPAA Privacy Rule applies to minors inasmuch as minors’ protected health information is subject to the [...]
HIPAA Compliant Software Development
HIPAA compliant software development consists of developing software for the healthcare and health insurance [...]
HIPAA Compliant Website Requirements
The requirements for a HIPAA compliant website are that any forms, apps, or tracking technologies that are [...]
HIPAA Subpoena for Medical Records: What You Need to Know
What you need to know when – as a healthcare provider – you receive a HIPAA subpoena for medical records [...]
Disadvantages of HIPAA
The disadvantages of HIPAA include administrative burden on healthcare organizations, potential financial [...]
Four Areas of HIPAA That Are Important to Patients
The four areas of HIPAA that are important to patients are the privacy of healthcare data, the security of [...]
What Information can be Shared without Violating HIPAA?
The information that can be shared without violating HIPAA includes any Protected Health Information (PHI) [...]
What happens if a nurse violates HIPAA?
What happens if a nurse violates HIPAA depends on the nature of the violation, the consequences of the [...]
Password Managers and HIPAA
Password managers are effective tools to support HIPAA compliance subject to them having the capabilities to [...]
Is WhatsApp HIPAA Compliant?
WhatsApp is not HIPAA compliant and should not be used to send or receive Protected Health Information (PHI) [...]
What are the HIPAA Requirements for Mobile Devices?
The HIPAA requirements for mobile devices are that they are included in risk analyses, that apps and services [...]
Does HIPAA Apply to Therapists?
HIPAA applies to therapists who own, who work for, or who are contracted to a healthcare organization or [...]
How Much is a HIPAA Violation Lawsuit Worth? 3 Cases That Could Shape Future Judgements
How much a HIPAA violation lawsuit is worth depends on the nature of the violation, the harm caused, and the [...]
Can Employees Who Violate HIPAA Rules Be Terminated?
Employees that violate HIPAA rules can be terminated if the nature of the violation and its consequences are [...]
Why is PHI Valuable to Criminals?
PHI is valuable to criminals because there are many ways in which stolen Protected Health Information can be [...]
HIPAA Pictures and Videos. What are the Rules?
The HIPAA rules for pictures and videos are the same as for any piece of information that qualifies as [...]
What is 45 CFR § 164.530?
In the Code of Federal Regulations, 45 CFR § 164.530 relates to the administrative requirements of the HIPAA [...]
What is the HIPAA Minimum Necessary Standard?
The HIPAA Minimum Necessary standard requires all HIPAA covered entities and business associates to restrict [...]
What are the HIPAA Rules Regarding Text Messaging?
The HIPAA Rules regarding text messaging are that it is permissible for healthcare providers to send [...]
What are the HIPAA e-Signature Requirements?
At present, there are no HIPAA e-signature requirements other than “any electronic signature used will [...]
Is OneDrive HIPAA Compliant?
OneDrive is HIPAA compliant and can be used to store, sync, and share files containing Protected Health [...]
What is 45 CFR § 164.308?
45 CFR § 164.308 is the section of the Code of Federal Regulations that contains the Administrative [...]
Are All Emails HIPAA Compliant?
All emails are not HIPAA compliant because only emails containing Protected Health Information (PHI) are [...]
What is the HIPAA Omnibus Rule?
The HIPAA Omnibus Rule is a Rule published by HHS’ Office for Civil Rights in January 2013 that modified [...]
Can I get fired for an accidental HIPAA violation?
You can get fired for an accidental HIPAA violation depending on the nature of the violation, the [...]
HIPAA and Incidental Disclosures of PHI
HIPAA permits incidental disclosures of PHI provided that HIPAA covered entities implement reasonable [...]
What are HIPAA Covered Transactions?
HIPAA covered transactions are electronic communications between two parties for administrative or financial [...]
What is Texas HB-300 Compliance?
Texas HB-300 compliance is compliance with Chapter 181 of the Texas Health and Safety Code relating to the [...]
HIPAA Compliance for HR Departments
HIPAA compliance for HR departments consists of determining whether HIPAA applies to any of the [...]
What Employees Should Know about HIPAA Compliance
What employees should know about HIPAA compliance is that the objective of HIPAA compliance is not to avoid [...]
Plastic Surgery Practice Pays $500,000 Penalty to Settle Alleged HIPAA Violations
Plastic Surgery Associates of South Dakota was investigated by the Department of Health and Human Services [...]
Is FaceTime HIPAA Compliant?
Facetime is not HIPAA compliant, and should not be used by a HIPAA covered entity to communicate Protected [...]
Is MailChimp HIPAA Compliant?
Mailchimp is not HIPAA compliant and cannot be used to send marketing emails or newsletters that contain [...]
Is Google Voice HIPAA Compliant?
Google Voice is HIPAA compliant provided the service is used as an add-on to a HIPAA-enabled Workspace [...]
How to Make Office 365 HIPAA Compliant
The way to make Office 365 HIPAA compliant is to subscribe to an Office 365 plan that supports HIPAA [...]
Is Google Chat HIPAA Compliant?
Google Chat is HIPAA compliant when the messaging service is utilized as part of a Workspace account that has [...]
Is SharePoint HIPAA Compliant?
SharePoint is HIPAA compliant when the collaboration and content management system is used within a HIPAA [...]
Is Google Forms HIPAA Compliant?
Google Forms is HIPAA compliant and can be used to collect, export, and share protected health information [...]
Is Google Docs HIPAA Compliant?
Google Docs is HIPAA compliant and can be used by covered entities and business associates to create and [...]
Is Smartsheet HIPAA Compliant?
Smartsheet is HIPAA compliant provided that organizations subscribe to an Enterprise Plan, enter into a [...]
Is Calendly HIPAA Compliant?
Calendly is not HIPAA compliant and should not be used to create, collect, store, or transmit Protected [...]
Is PayPal HIPAA Compliant?
PayPal is exempt from compliance with HIPAA in respect of payment processing activities and covered entities [...]
Is Paubox HIPAA Compliant?
Paubox is a HIPAA compliant email service that enables covered entities and business associates to encrypt [...]
Is QuickBooks HIPAA Compliant?
QuickBooks is not HIPAA compliant because it lacks the safeguards to protect individually identifiable health [...]
Is HubSpot HIPAA Compliant?
HubSpot is HIPAA compliant for a limited number of features provided that covered entities or business [...]
Is Google Workspace HIPAA Compliant?
Google Workspace is HIPAA compliant for core services with included functionality which can be used to [...]
Is Discord HIPAA Compliant?
Discord is not HIPAA compliant and, due to the way in which data is collected and used by the platform, [...]
Is Zapier HIPAA Compliant?
Zapier is not HIPAA compliant and cannot be used to automate healthcare processes and workflows that expose [...]
Is Signal HIPAA Compliant?
Signal is not HIPAA compliant despite being an open-source messaging platform that encrypts all messages, [...]
What is a Business Associate Agreement?
A Business Associate Agreement is a contract between a covered entity and a business associate required by [...]
Planned Parenthood Investigating Cyberattack; RansomHub Group Takes Credit
The RansomHub threat group, a ransomware-as-a-service operation behind several recent attacks on healthcare [...]
Poor Email Practices are a Leading Cause of HIPAA Violations
Poor email practices and bad email compliance are common causes of HIPAA violations and often lead to major [...]
Does HIPAA Apply to Dentists?
HIPAA applies to dentists that qualify as – or who are employed by – HIPAA covered entities and to [...]
Is Google Drive HIPAA Compliant?
Google Drive is HIPAA compliant and can be used to store, share, and collaborate on files containing [...]
Is a HIPAA Email Disclaimer Worthwhile?
A HIPAA email disclaimer is a note included at the end of an email that alerts the recipient the email [...]
When Should you Promote HIPAA Awareness?
You should promote HIPAA awareness whenever it is feasible to promote HIPAA awareness because, as an entity [...]
Does an Email Subject Line have to be HIPAA Compliant?
An email subject line has to be HIPAA compliant if an email containing Protected Health Information is sent [...]
What Does PHI Stand For?
In healthcare, PHI stands for Protected Health Information – information relating to an individual’s [...]
Healthcare Data Breach Statistics
The US Department of Health and Human Services’ Office for Civil Rights (OCR) publishes healthcare data [...]
Is Dropbox HIPAA compliant?
Dropbox is HIPAA compliant and can be used to store and share files containing Protected Health Information [...]
What is the HIPAA Conduit Exception Rule?
The HIPAA Conduit Exception Rule exempts organizations that provide transmission services from qualifying as [...]
Is Proton Mail HIPAA Compliant?
Proton Mail is HIPAA compliant and can be used either with an existing domain or as a standalone service to [...]
Is Amazon Web Services HIPAA Compliant?
Amazon Web Services is HIPAA compliant for “HIPAA eligible services” covered by AWS’ general Business [...]
Can Healthcare Professionals Use Personal Phones at Work Without Violating HIPAA?
Healthcare professionals can use personal phones at work without violating HIPAA if the phone is not used to [...]
Is ChatGPT HIPAA Compliant?
ChatGPT is not HIPAA compliant at the time of writing and cannot be used by covered entities or their [...]
Examples of HIPAA Email Violations
It is easy to find clear examples of HIPAA email violations in the archive pages of HHS’ Breach Portal, but [...]
What is a Healthcare IT MSP?
A healthcare IT MSP provides a range of IT services to healthcare organizations and manages the services for [...]
What is HIPAA Compliant Texting?
HIPAA compliant texting is when a covered entity or business associate – or a member of either’s [...]
Can A Patient File A Lawsuit for A HIPAA Violation?
A patient may be able to file a lawsuit for a HIPAA violation if the consequences of the violation result in [...]
When Can HIPAA be Broken?
HIPAA cannot be “broken” inasmuch as the HIPAA Privacy Rule accommodates the circumstances in which [...]
Is it Possible to Make Wix HIPAA Compliant?
It is not possible to make Wix HIPAA compliant but there are ways in which websites built and hosted on Wix [...]
HIPAA for Leadership
HIPAA for Leadership Executives, board members, and department heads who govern Covered Entities and Business [...]
Is HIPAA a Federal Law?
The Health Insurance Portability and Accountability Act (HIPAA) is Federal law that was enacted in 1996 with [...]
Is HelloFax HIPAA Compliant?
HelloFax is HIPAA compliant if covered entities/business associates subscribe to a Dropbox Sign package that [...]
Is Ivy Pay HIPAA Compliant?
Ivy Pay is HIPAA compliant for licensed independent therapists and mental health professionals that qualify [...]
What are HIPAA identifiers?
The HIPAA identifiers are elements of information that can identify an individual and that have to be removed [...]
Is Slack HIPAA Compliant?
Slack is HIPAA compliant for covered entities and business associates that subscribe to an Enterprise Grid [...]
What is individually identifiable health information?
Individually identifiable health information is roughly defined by the HIPAA Administrative Simplification [...]
Can Healthcare Vendors Get HIPAA Certification?
Healthcare vendors can get HIPAA certification, but it is important for organizations to be aware that a [...]
What is PII in Healthcare?
PII in healthcare stands for Personally Identifiable Information – the type of information not covered by [...]
What Does HIPAA Mean?
HIPAA means the Health Insurance Portability and Accountability Act – an Act which led to the development [...]
What is the Administrative Simplification Section of HIPAA?
The Administrative Simplification section of HIPAA contains the regulations, standards, and implementation [...]
Can Google Sheets Be Used with PHI by Healthcare Organizations?
Google Sheets can be used with PHI by healthcare organizations provided the program is used as part of a [...]
Guide to Patient Rights under HIPAA
Patient rights under HIPAA include the rights to access health information, request corrections when errors [...]
Is Zelle HIPAA Compliant?
Zelle is not HIPAA compliant, but does not have to be due to payment processors being exempted from complying [...]
What is HIPAA Authorization?
A HIPAA authorization is permission given by a patient or plan member that allows a covered entity or [...]
Who is Required to Follow HIPAA Requirements?
Those required to follow HIPAA requirements include most healthcare providers, most health plans, and health [...]
Where is the Best Location to Post a Notice of Privacy Practices?
The best location to post a Notice of Privacy Practices is a physical location where it can be seen and read [...]
5 Real HIPAA Violation Consequences
Many sources discussing HIPAA violation consequences tend to focus on civil monetary penalties and criminal [...]
The HIPAA Authorization Form to Release Medical Records
A HIPAA authorization form to release medical records must be obtained from a patient or their personal [...]
What is the HIPAA Privacy Rule?
The HIPAA Privacy Rule contains the Standards for the Privacy of Individually Identifiable Health [...]
Who Does HIPAA Apply To?
Most sources tackling the question who does HIPAA apply to tend to rely on the applicability clause of the [...]
Can You Go To Jail for a HIPAA Violation?
You can go to jail for a HIPAA violation if you knowingly and wrongfully use or disclose – or cause to [...]
Is Rackspace HIPAA Compliant?
Rackspace is HIPAA compliant for “HIPAA-eligible services” provided that the services are configured to [...]
HITRUST vs HIPAA
A HITRUST vs HIPAA analysis can help healthcare organizations understand why it may be worth pursuing a [...]
What Does HIPAA Stand for in Medical Terms?
In medical terms, HIPAA stands for the Privacy, Security, and Breach Notification Rules that govern how [...]
NIST Releases Final HIPAA Security Rule Implementation Guide
The National Institute of Standards and Technology (NIST) and the HHS Office for Civil Rights (OCR) have [...]
What are the Objectives of the HIPAA Technical Safeguards?
The objectives of the HIPAA Technical Safeguards – together with the Physical and Administrative [...]
Can Hotmail Be Considered as HIPAA Compliant?
Hotmail cannot be considered HIPAA compliant for sending or receiving emails containing PHI unless a user’s [...]
Is HoneyBook HIPAA Compliant?
HoneyBook is not HIPAA compliant and – at present – the CRM platform should not be used for [...]
Is Constant Contact HIPAA Compliant?
Constant Contact is HIPAA compliant provided users subscribe to a business plan with the capabilities to [...]
Is WordPress HIPAA Compliant?
WordPress is not HIPAA compliant by default and although it is possible for covered entities and business [...]
Is Facebook Messenger HIPAA Compliant?
Facebook Messenger is not HIPAA compliant because it lacks many of the controls required to support [...]
What are the Responsibilities of a HIPAA Compliance Officer?
The responsibilities of a HIPAA compliance officer include ensuring the organization complies with all [...]
What is the HIPAA Security Rule?
The HIPAA Security Rule stipulates the standards and implementation specifications that must be complied with [...]
What is the Purpose of HIPAA?
The original purpose of HIPAA was to reform the health insurance industry, but due to concerns the cost of [...]
The Rules of Dental HIPAA Compliance
The rules of dental HIPAA compliance are no different from the rules governing other HIPAA Covered Entities [...]
When Does State Privacy Law Supersede HIPAA?
State privacy law supersedes HIPAA when it has more stringent privacy protections or more patient rights than [...]
What happens after a HIPAA complaint is filed?
What happens after a HIPAA complaint is filed depends on who is making the complaint, the nature of the [...]
HIPAA Compliance for Home Health Care Workers
HIPAA compliance for home health care workers can often be more challenging than HIPAA compliance for health [...]
What is a HIPAA Covered Entity?
A HIPAA covered entity is an individual or organization whose primary occupation is a health plan provider, a [...]
What Does HIPAA Stand For?
HIPAA stands for the Health Insurance Portability and Accountability Act – an Act passed in 1996 that was [...]
HIPAA and Social Media – What are the Guidelines?
HIPAA social media guidelines can mitigate the risk of impermissible disclosures of PHI in violation of HIPAA [...]
What are the Penalties for HIPAA Violations?
The penalties for HIPAA violations vary depending on the nature of the violations, the degree of harm caused, [...]
Does HIPAA Apply after Death?
HIPAA applies after the death of an individual for a period of fifty years, during which time the same limits [...]
Is Microsoft Teams HIPAA Compliant?
Microsoft Teams is HIPAA compliant and can be used to collect, save, share, or export protected health [...]
What is a HIPAA Violation?
A HIPAA violation is the failure by a HIPAA covered entity or business associate to comply with any [...]
Is Marketo HIPAA Compliant?
Marketo is HIPAA compliant for organizations that subscribe to Adobe’s Experience Cloud for Healthcare, [...]
Is iCloud HIPAA-Compliant?
iCloud cannot be considered HIPAA compliant and cannot be used to store, sync, or share media which include [...]
To Whom Should HIPAA Complaints be Reported to Within a Covered Entity?
HIPAA complaints within the covered entity should be reported to an immediate supervisor; or, if the [...]
Who is subject to HIPAA?
Entities subject to HIPAA include most – but not all – healthcare providers, health care clearinghouses, [...]
Telemedicine HIPAA requirements
The telemedicine HIPAA requirements affect any medical sector employee or healthcare organization that [...]
Reporting a HIPAA Violation at Work
The procedures for reporting a HIPAA violation at work are set by each individual covered entity or business [...]
HIPAA Business Associate Examples
Many sources of HIPAA business associate examples tend to rely on and repeat the examples of HIPAA business [...]
What Happens to PHI After a Healthcare Business Closes?
What happens to PHI after a healthcare business closes should be that any individually identifiable health [...]
How long does a HIPAA investigation take?
How long a HIPAA investigation takes depends on factors such as the nature of the violation, the consequences [...]
Is a Client’s Photo Considered PHI?
A client’s photo is considered to be PHI under HIPAA in certain circumstances and it is important for [...]
Why is the HITECH Act Important?
The HITECH Act is important because it promoted the widespread adoption of healthcare information technology [...]
Is Workplace Gossip a HIPAA Violation?
Workplace gossip can be a HIPAA violation depending on who the subject of the gossip is, what the gossip is [...]
Which Entity Enforces HIPAA?
Although the entity most often referred to as the enforcer of HIPAA is the Department of Health and Human [...]
What is the HIPAA Breach Notification Rule?
The HIPAA Breach Notification Rule is a Rule introduced by the HITECH Act that requires covered entities – [...]
Reporting an Anonymous HIPAA Violation Complaint
Reporting an anonymous HIPAA violation compliant to HHS’ Office for Civil Rights (OCR) is likely to result [...]
The Duties of a HIPAA Compliance Officer
Under the Healthcare Insurance Portability and Accountability Act (HIPAA), covered entities and business [...]
When Was HIPAA Enacted?
HIPAA has been enacted in various stages since the passage of the Health Insurance Portability and [...]
What are Examples of Protected Health Information?
Articles listing examples of protected health information often refer to the list of identifiers that must be [...]
Pharmacies and HIPAA
A connection between pharmacies and HIPAA exists because the definition of health care provided in §160.103 [...]
Why is HIPAA Important?
HIPAA is important because it creates a federal floor of privacy and security protection for individually [...]
What are the HIPAA Breach Notification Requirements?
The HIPAA breach notification requirements are the processes and procedures that must be followed by a HIPAA [...]
Understanding HIPAA and the HITECH Act
The HITECH Act updated HIPAA and is concerned with promoting the adoption of electronic health records and [...]
When Can You Break Patient Confidentiality Under HIPAA?
The challenge with answering when can you break patient confidentiality under HIPAA is that HIPAA does not [...]
Who Created HIPAA?
Some areas of HIPAA were created by the Clinton administration’s Health Plan Task Force, others were [...]
Why was HIPAA Created?
HIPAA was created to reform the health insurance industry; but, because the reforms would incur costs and [...]
HIPAA Guidelines for Mental Health Professionals
The HIPAA guidelines for mental health professionals are the same as the HIPAA guidelines for other types of [...]
Is Gmail HIPAA Compliant?
Gmail is HIPAA compliant when an organization subscribes to a Google Workspace plan that supports HIPAA [...]
What is FWA in Healthcare?
FWA in healthcare stands for fraud, waste, and abuse – an issue currently estimated to cost the country [...]
7 Questions to Ask HIPAA Compliance Consultants
HIPAA compliance consultants are individuals or firms of compliance professionals with an understanding of [...]
OCR Stresses the Importance of a HIPAA Sanction Policy
The Privacy and Security Rules of the Health Insurance Portability and Accountability Act (HIPAA) require [...]
Examples of Poor Communication between Nurse and Patient
It is rare to find many real-life examples of poor communication between nurse and patient in the United [...]
What are the HIPAA Reporting Requirements?
The HIPAA reporting requirements are often confused with the notification requirements following a breach of [...]
OCR Issues Guidance on Educating Patients About Telehealth Risks
The HHS’ Office for Civil Rights has issued guidance for healthcare providers to help them educate patients [...]
Who Needs to be HIPAA Compliant?
The question of who needs to be HIPAA compliant has multiple answers due to the variety of activities within [...]
Is a HIPAA Violation a Felony?
A HIPAA violation felony involves the knowing and wrongful use or disclosure of individually identifiable [...]
Within HIPAA, How Does Security Differ From Privacy?
Within HIPAA, the security standards apply to Protected Health Information (PHI) that is created, received, [...]
What To Do If Accused of a HIPAA Violation
What you should do if accused of a HIPAA violation depends on who you are, who is accusing you, and the [...]
The HIPAA Guidelines for Medical Offices
The HIPAA guidelines for medical offices are no different than for any other healthcare facility that [...]
What is a HIPAA Form?
A HIPAA form can be one of several documents. In many cases, a HIPAA form is another name for an [...]
Who is Covered by HIPAA?
A lack of knowledge about who is covered by HIPAA can lead to misconceptions about when it is permissible to [...]
What Should be Included in a HIPAA Photography Policy?
A HIPAA photography policy should govern the use of cameras and mobile phones in healthcare environments – [...]
What is the Difference between EMS and EMT in Healthcare?
The difference between EMS and EMT in healthcare is that EMS is an acronym for Emergency Medical Services, [...]
What Does it Mean to be HIPAA Compliant?
There are many interpretations of the question what does it mean to be HIPAA compliant, and therefore many [...]
What is SOC 2 Compliance?
SOC 2 compliance is compliance with the Service Organization Control 2 standards for managing and securing [...]
What are HHS OIG Exclusions?
HHS OIG exclusions are individuals and entities that are prohibited from participating in any federal health [...]
Warnings Issued by OCR & FTC Over Tracking Technology Use
Warning letters have been sent by the HHS’ Office for Civil Rights (OCR) and the Federal Trade Commission [...]
Is Gravity Forms HIPAA Compliant?
Gravity Forms is not HIPAA compliant and should not be used in its default state by covered entities and [...]
Benefits of HIPAA
HIPAA provides a range of benefits including bolstering patient data security through rigorous standards, [...]
Is Google Meet HIPAA Compliant?
Google Meet is HIPAA compliant for meetings between healthcare professionals and for providing telehealth [...]
Who Enforces HIPAA Privacy Provisions in Non-Criminal Cases?
In order to best answer the question who enforces HIPAA privacy provisions in non-criminal cases, it is [...]
HIPAA Authorization Form
The Privacy Rule stipulates that a valid HIPAA authorization form must be completed before using or [...]
Does HIPAA Apply to Schools?
In most cases, the question of does HIPAA apply to schools is answered by the definition of a HIPAA Covered [...]
What is the Difference between PHI and ePHI?
The difference between PHI and ePHI is that the acronym PHI relates to Protected Health Information in all [...]
Website and Other Tracking Code May Violate HIPAA
In July, the independent journalism site, The Markup, discovered one-third of the top 100 hospitals in the [...]
Is an Email Address Considered PHI?
An email address is considered PHI when it is maintained in a designated record set by a HIPAA covered entity [...]
Why is HIPAA important to patients?
The Health Insurance Portability and Accountability Act was introduced in 1996, and since then has seen many [...]
How can you avoid HIPAA violations?
Given how serious they are, how can you avoid HIPAA violations? Is there any sure-fire method of preventing [...]
How long do you have to report a HIPAA violation?
If a HIPAA violation has been discovered, it is not only essential that it is reported in a timely manner [...]
How Password Managers Help Prevent Phishing Attacks
Anyone who is unsure about the scale of the threat from phishing should read the web descriptions of data [...]
What Does HIPAA Protect?
There are various answers to the question what does HIPAA protect depending on the perspective from which you [...]
What is HITECH in healthcare?
The Health Information Technology for Economic and Clinical Health Act (HITECH Act) came into effect [...]
Compliance with HIPAA and EHR Policies
Despite the best efforts of many Covered Entities, there appears to be an upward trend in violations of HIPAA [...]
What is Considered a Breach of HIPAA?
The terms “violation” and “breach” are sometimes conflated in HIPAA-related discussions, and it is [...]
Updated Security Risk Assessment Tool Released by HHS
The HIPAA Security Rule requires HIPAA-regulated entities to conduct a security risk assessment to identify [...]
How to Make a HIPAA Complaint
Despite the Privacy Rule requiring healthcare organizations and health plans to provide information about how [...]
What is covered under HIPAA?
Many patients will be aware of HIPAA, and know that it guarantees some protections for their privacy, but [...]
What happens if HIPAA is violated?
What happens if HIPAA is violated? What are the possible consequences for covered entities and their [...]
Who can violate HIPAA?
Who can violate HIPAA? Can anyone violate HIPAA? To answer this, it is essential to first know who HIPAA [...]
Is HIPAA still in effect?
It may have been around for a long time now, but is HIPAA still in effect? In short, yes, HIPAA is still in [...]
What Happens if you Violate HIPAA?
What happens if you violate HIPAA depends on the nature of the violation and its consequences, the motive [...]
The Importance of HIPAA Security Rule Information Access Management and Access Control Compliance
The HHS’ Office for Civil Rights has recently reminded HIPAA-covered entities and their business associates [...]
Can Employers ask Employees about COVID-19 Vaccinations?
In the United States, mask mandates are starting to be lifted and people who have been fully vaccinated [...]
City of New Haven Settles HIPAA Violation Case with OCR for $202K
The City of New Haven in Connecticut has settled a HIPAA violation case with the U.S. Department of Health [...]
Athens Orthopedic Clinic Agrees to Pay $1.5 Million to Settle OCR HIPAA Violation Case
The Department of Health and Human Services’ Office for Civil Rights (OCR) has settled another HIPAA [...]
Americans Largely Unaware of Extent that Health Insurers Access their Online Data
A recent MITRE-Harris poll has revealed most Americans are unaware of the extent to which health insurers are [...]
OCR Updates mHealth Portal Adding New Resources for HIPAA Health App Developers
In certain circumstances, the developers of mobile health apps are classed as business associates and are [...]
Before You Can Safeguard PHI, You Must Know Where it is Located
HIPAA-covered entities and their business associates are required to implement safeguards to ensure the [...]
Telehealth Policy Changes Could Become Permanent When COVID-19 Public Health Emergency Ends
If there is one good thing to come out of the COVID-19 pandemic it is the changes that have been made to [...]
Reports of COVID-19 Diagnoses by Media Suggest Violations of HIPAA
When famous people are diagnosed with an illness or suffer an accident, that can be headline news. The Health [...]
OCR Issues Guidance on Telehealth Services During COVID-19 Public Health Emergency
Last week, the Trump Administration extended Medicare telehealth services as the COVID-19 crisis deepened. [...]
2019 Novel Coronavirus and HIPAA Compliance
Important information on the 2019 Novel Coronavirus and HIPAA compliance, the limited HIPAA waiver announced [...]
20 Common HIPAA Myths Debunked
In this post we cover some of the many HIPAA myths that have been circulating on the internet and often get [...]
Failure to Encrypt ePHI on Portable Devices Results in $3 Million Financial Penalty
The HHS’ Office for Civil Rights (OCR) has announced its sixth HIPAA penalty of 2019. The University of [...]
Third of Healthcare Employees Have Received No Cybersecurity Training
A new Kaspersky Lab study has shed light on why healthcare organizations are so susceptible to data breaches. [...]
HHS Confirms When Business Associates Can be Held Directly Liable for HIPAA Violations
The Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009, and the subsequent [...]
Study Reveals Widespread Nonconformance with HIPAA Rules and NIST CSF Controls
It has been 14 years since the HIPAA Security Rule requirements have been mandatory, but many healthcare [...]
Are Google Home and Google Assistant Compliant With HIPAA?
Can medical practitioners use Google Home and Google Assistant? Is Google Assistant HIPAA compliant or would [...]
Is DocuSign HIPAA Compliant?
Can healthcare organizations use DocuSign in association with electronic protected health information (ePHI) [...]
Is Evernote HIPAA Compliant?
Evernote is a useful cloud-based tool for taking notes, making to do lists, planning projects, and [...]
Is Google Keep HIPAA Compliant?
Google Keep is a cloud-based note taking application that allows notes to be created and shared across [...]
Is Return Path HIPAA Compliant?
Return Path is an email marketing and optimization program that helps companies to put their email marketing [...]
Is Mandrill HIPAA Compliant?
Does Mandrill support HIPAA compliance? Can healthcare organizations use MailChimp’s transactional email [...]
Is SparkPost HIPAA Compliant?
SparkPost is a well-known email delivery and analytics program used by a lot of businesses for communicating [...]
Is JotForm HIPAA Compliant?
JotForm is a software solution that can be used for making online forms. Can healthcare organizations use [...]
HIPAA-Compliant SFTP Server Requirements
If healthcare providers, health plans, healthcare clearinghouses and business associates of HIPAA-covered [...]
Is Zendesk HIPAA Compliant?
Zendesk is a provider of a customer service software program and support ticketing system. More than 200,000 [...]
HIPAA Violation Fines
This article list the HIPAA violation fines issued by HHS’ Office for Civil Rights (OCR) and the [...]
GDPR-Style Data Privacy Law Signed into California Legislature
California governor Jerry Brown has signed AB 375 – the California Consumer Privacy Act of 2018 – [...]
What Information Does the HIPAA Law Protect?
To find the answer to the question what information does the HIPAA law protect, you have to look beyond the [...]
How to Improve Hospital Workflows
Achieving Workflow Optimization in Hospitals The matter of improving hospital workflows is a senior [...]
HIPAA Compliance for Call Centers
HIPAA Compliant Texting in Call Centers HIPAA compliance for call centers is an important concern for all [...]
How Employees Can Help Prevent HIPAA Violations
Healthcare institutions and their business associates must be in compliance with the HIPAA Privacy, Security, [...]
HIPAA Security Officer
The Administrative Safeguards of the HIPAA Security Rule (45 CFR 164.308) require all Covered Entities to [...]
HIPAA Encryption for iPhones and Android Phones
Should healthcare providers encrypt data in the smartphones they use? There is some misunderstanding [...]
What Are Covered Entities Under HIPAA?
The Health Insurance Portability and Accountability Act (HIPAA) is applicable to healthcare organizations and [...]
CMS Explains the Use of Text Messages in Healthcare
The Centers for Medicare and Medicaid Services (CMS) has confirmed to healthcare providers that using text [...]
Technology Use in Healthcare Versus HIPAA Compliance
Why Modern Technology May Not be HIPAA Compliant A lot of healthcare professionals today use their mobile [...]
The HIPAA Guide is a registered trademark. Copyright © 2007-2026 The HIPAA Guide. All rights reserved.
