Changes in HIPAA Regulations and Enforcement in 2018
What changes in HIPAA regulations could be expected in 2018? Are there new HIPAA regulations expected to be [...]
Everything you need to know about HIPAA
10 years of HIPAA advice
HIPAA Updates
Limited Waiver of HIPAA Penalties in Florida and Georgia in Aftermath of Hurricane Michael
Alex Azar, secretary of the Department of Health and Human Services (HHS) has waived HIPAA sanctions and [...]
Three Legislation Changes on HIPAA Regulations in 2018 Under Consideration by OCR
Because of the policy of two out for every new regulation, it is likely that there will be few new HIPAA [...]
How is the HITECH Act Related to HIPAA and Electronic Health and Medical Records?
The Health Insurance Portability and Accountability Act (HIPAA) was enacted in August 1996. It was updated in [...]
OCR Pubishes Guidance on Patient Data Sharing During a Public Health Emergency
Following President Trump’s declaration of a public health emergency in Virginia due to Hurricane [...]
HIPAA Violation Cases: 2013 – 2017
This page contains a summary of HIPAA violation cases which led to settlements with the Department of Health [...]
OCR Reminds Healthcare Companies the Proper Disposal of Electronic Devices and Media
The Department of Health and Human Services’ Office for Civil Rights, in the July edition of its [...]
HHS to Release Information for the Proposed Changes on Federal Health Privacy Rules
Alex Azar, Secretary of the Department of Health and Human Services (HHS), explained in an address at The [...]
New Massachusetts Bill Proposes 18 Months Complimentary Credit Monitoring Services for Data Breach Victims
A new bill has been proposed in the state of Massachusetts that aims to enhance protections for customers [...]
Patient Privacy and Security Are Most Important to Consumers According to Aetna Survey
Health insurer Aetna conducted a survey about consumers’ attitudes toward healthcare, their associations [...]
OCR Explains the Importance of Patch Management for HIPAA Compliance
OCR has reminded healthcare organizations of the importance of patch management for HIPAA compliance. Patches [...]
AHA Provides Extensive Feedback on CMS’ Hospital Inpatient Prospective Payment System Proposed Rule
The American Hospital Association (AHA) has submitted extensive comments about the HHS’ Centers for [...]
Common Rule Compliance Date Now January, 19 2019
The federal government published on June 19, 2018 the final rule for the Federal Policy for the Protection of [...]
Understanding the Requirements on Issuing Individual Authorization for Uses and Disclosures of PHI for Research
To help HIPAA-covered entities to streamline HIPAA authorizations for the use of protected health information [...]
New Data Protection Law Signed in Colorado
A new bill – HB 1128 – has been signed into law by Colorado Governor John Hickenlooper which [...]
MGMA Urges CMS to Enforce Compliance with HIPAA Administrative Simplifications
The Department of Health and Human Services’ Office for Civil Rights has issued many financial penalties [...]
New Cybersecurity Law Covering the Insurance Industry Signed in South Carolina
South Carolina Governor Henry McMaster signed into law the South Carolina Insurance Data Security Act on May [...]
GAO Reports Patients Still Pay Excessive Fees for Copies of Their Medical Records
The Government Accountability Office (GAO) recently conducted an audit which showed that patients still face [...]
OCR Recommends Risk Analysis And Gap Analysis
OCR published in its April 2018 cybersecurity newsletter the importance of performing a gap analysis. While a [...]
Study Shows Gap Between Healthcare Compliance Programs and Expectations of Regulators
Most healthcare compliance officers prioritize the compliance of their organizations with the HIPAA Privacy [...]
ONC Published a New Patient Guidebook to Encourage Patient Health Record Access
The Department of Health and Human Services’ Office of the National Coordinator for Health IT (ONC) [...]
Three Proposed Changes in HIPAA Regulations in 2018
For every new regulation introduced, two will be cut out. That is an administration policy that is in the [...]
Can Liquid Web Be Used by Healthcare Organizations Without Violating HIPAA Rules?
Liquid Web is a hosting solution provider that has been in the business for 20 years. Is it a HIPAA compliant [...]
Can Healthcare Organizations Use Zoho Without Violating HIPAA Rules?
A Pleasanton, CA-based company has been developing Zoho, a suite of cloud-based tools and applications, since [...]
Healthcare Data Breach Statistics From 2009 to 2017
The Department of Health and Human Services’ Office for Civil Rights began publishing summaries of [...]
New Version of Colorado Data Breach Notification Bill Cuts Reporting to 30 Days
The Colorado data breach notification bill was introduced in January to protect residents against data [...]
Massachusetts Launched a New Online Data Breach Reporting Tool
The Massachusetts Attorney General’s office launched a new online data breach reporting tool. The purpose [...]
Proposed Amendments to the Iowa Breach Notification Act
Iowa Attorney General introduced a new bill that proposes changes to the Iowa Breach Notification Act. Since [...]
South Dakota Data Breach Notification Bill Introduced
There are only two U.S. states that do not have data breach legislation for the protection of their state [...]
Colorado Legislators Propose New Privacy and Data Breach Law
A bipartisan group of legislators in Colorado proposed changing its privacy and data breach notification laws [...]
Second Phase of HIPAA Compliance Audits Likely to Penalize the Noncompliant
Healthcare organizations will pay a big amount for noncompliance with HIPAA Rules. Despite the hefty [...]
HHS Issued Partial HIPAA Privacy Rule Waiver for the Third Time in 2017
The U.S. Department of Health and Human Services issued a partial waiver of HIPAA sanctions and penalties for [...]
How Can HIPAA-Covered Entities Lower the Security Risks of Mobile Device Usage?
Healthcare organizations need to address the security risks associated with the use of mobile devices and [...]
Cottage Health To Pay $2 Million For Failure to Protect Patients’ Privacy and PHI
Santa Barbara-based Cottage Health has agreed to pay $2 million as a financial penalty for a breach case with [...]
HIPAA Compliance for Self-Administered Group Health Plan
One of the most confusing aspects areas of HIPAA legislation is HIPAA compliance for self-insured group [...]
Is OneDrive HIPAA Compliant?
Many covered entities want to take advantage of cloud storage services, but it is important to consider if [...]
HIV Status of its Members May Possibly Revealed in Amida Care Breach
The New York based not-for-profit community health plan provider Amida Care has reported a HIPAA breach that [...]
Clinical Worker Receives Five-Year Prison Sentence for Stealing PHI
A clinic employee has failed to get his 5-year jail term reduced. The man stole the protected health [...]
Clarification on HIPAA Rules on Sharing Patient Information on Opioid Overdoses Issued by OCR
The confusion about HIPAA Rules on sharing patient information on opioid overdoses has been clarified by the [...]
Sharing of EHR Passwords is Common: Report
According to the released results of a recent survey, the practice of sharing EHR passwords is commonplace, [...]
What is the HIPAA breach notification rule?
Despite the Health Insurance Portability and Accountability Act of 1996 being one of the most vital pieces of [...]
McGraw leaves Department of Health and Human Services’ Office for Civil Rights (OCR)
Deven McGraw, the Deputy Director for Health Information Privacy at the Department of Health and Human [...]
Is Dropbox HIPAA compliant?
Dropbox is a widely-used file hosting service used by many groups to share files, but is Dropbox HIPAA [...]
HIPAA Compliant Business Associates can be Found Easily Using New Tool
Healthcare groups are only authorized to use business associates that agree to adhere with HIPAA Rules and [...]
What are the HIPAA rules for dentists?
Despite the fact that many dental clinics are self-contained centers, the HIPAA rules for dentists apply to [...]
How many HIPAA Violations in 2016?
The Department of Health and Human Services’ Office for Civil Rights (OCR) has increased its enforcement [...]
Telemedicine HIPAA requirements
The Telemedicene HIPAA requirements affect any medical sector employee or healthcare organization that [...]
What are the HIPAA e-signature requirements?
Digital signatures have proved, in the healthcare industry, to increase the efficiency of many processes, yet [...]
Limited Waiver of HIPAA Sanctions issues by HSS in aftermath of Californian Wildfires
A limited waiver of HIPAA sanctions and penalties was issued by the Secretary of the U.S. Department of [...]
What is HIPAA compliant texting?
The answer to the question “What is HIPAA compliant texting” is generally unclear. Although HIPAA does [...]
What are the HIPAA email compliance requirements?
There has been much debate about HIPAA email compliance requirements since amendments were made to the Health [...]
HIV Status of Amida Care Members Potentially Revealed Due to Mailing Error
Amida Care, the New York not-for-profit community health plan, has announced that it has experienced HIPAA [...]
HIPAA Encryption Requirements
HIPAA encryption requirements have proved a source of much confusion. This is due to the technical safeguards [...]
What are the HIPAA requirements for mobile devices?
Healthcare organizations and other HIPAA-covered bodies have embraced the evolution of mobile technology, and [...]
HHS Withdraws Proposed Certification Rule After Concerns Raised
The United States Department of Health and Human Services (HHS) proposed a new rule for certification of [...]
Why was HIPAA created?
The Healthcare Insurance Portability and Accountability Act (HIPAA) was signed into law, on August 21, 1996 [...]
What are the HIPAA telephone rules?
The Federal Communication Commission has issued a Declaratory Ruling and Order to clarify the HIPAA telephone [...]
What are the rules for HIPAA Compliant Telemedicine?
The rule for HIPAA Compliant Telemedicine in call centers is something every company, providing an answering [...]
What are the HIPAA rules regarding text messaging?
Labelling text messaging as HIPAA violation is not strictly correct. Depending on the context of the text [...]
What are the Penalties for HIPAA Violations?
The Department of Health and Human Services’ Office for Civil Rights (OCR) and state attorneys general can [...]
Initiative to Help Small Healthcare Providers with HIPAA Compliance Launched by HITRUST/AMA
A new initiative – that will assist small healthcare providers with HIPAA compliance, cybersecurity and [...]
New Proposals from AHA Aim to Reduce Regulatory Burdens
In a recent correspondence with the House Ways and Means Health Subcommittee, the American Hospital [...]
Hurricane Maria Disaster Zone Has Partial HIPAA Privacy Rule Waiver Imposed
The U.S. Department of Health and Human Services (HHS) has already imposed two partial waivers of HIPAA [...]
How the Compliancy Group Can Help Covered Entities Pass a HIPAA Audit
The second round of HIPAA compliance audits by the Department of Health and Human Services’ Office for [...]
OCR Encourage Patients to Get Copies of Their Health Data
The Department of Health and Human Services’ Office for Civil Rights has introduced a new campaign to [...]
Hospitals Within the Irma Disaster Zone Granted Limited HIPAA Waiver
A public health crisis was declared in some parts of the U.S. Virgin Islands, Florida and Puerto Rico, which [...]
OCR Tells Covered Entities to Prepare for Hurricanes and Other Natural Disasters
Hospitals in the states of Louisiana and Texas needed to make sure medical services are provided through the [...]
A Review of HIPAA Settlement Cases for Big Breaches in 2017
The Director of the Department of Health and Human Services’ Office for Civil Rights (OCR), Roger Severino, [...]
AHA Wrote Congress to Lessen Regulatory Pressure on Hospitals
The American Hospital Association (AHA) sent a letter to the House Ways and Means Health Subcommittee and [...]
HHS Declares in Hurricane Harvey Disaster Zone the Partial Waiver of Sanctions and Penalties for HIPAA Privacy Rule Violations
During emergency situations for example natural disasters, HIPAA Privacy Rule compliance can be a difficult [...]
FTC Published the Basics of Preventing Data Breaches
Next generation firewalls, intrusion detection systems, insider threat control solutions as well as data [...]
HIPAA-Covered Entities Violate the Breach Notification Rule When Delaying Breach Notifications
Under the HIPAA Breach Notification Rule (45 CFR §§ 164.400-414), covered entities need to notify the [...]
Protenus’ Insight on 2017 Breach Barometer Mid-Year Report
Protenus, together with Databreaches.net, made its Breach Barometer mid-year report. It discusses all [...]
Copyright © 2007-2018 The HIPAA Guide Site Map Privacy Policy About The HIPAA Guide