HHS is Focusing in on Small Breaches
If you think HIPAA won’t be enforced for small breaches, think again. On August 18, 2016, OCR announced its intent to focus in on smaller breaches. The announcement states “Beginning this month, OCR has begun an initiative to more widely investigate the root causes of...
Update: Increase in Estimated Cost of a HIPAA Breach
With Phase 2 of HIPAA audits in full swing, many companies are worried about potential fines and penalties from the Office of Civil Rights (OCR). However, the cost of a breach can cost a lot more than any fines from OCR. The easiest way to avoid the financial impact...
How HIPAA Can Help Deter Hackers
The number of hacks and breaches that occur continues to rise exponentially. Though you may have security measures in place, hackers are finding new ways to infiltrate your system. So, what can you do to stay one step ahead of the hackers? A 2015 Reader’s Digest...
Covered Entities Must Share PHI with Patients Even in an Unencrypted Format
This month, Atlantic Information Services reported that covered entities must provide patients with their ePHI when they request it, in a format that the patient can open on their computer. Does this mean Covered Entities may have to send unencrypted emails containing...
Do You Have a Disaster Recovery Plan, and Have You Tested It?
As much as we hope every business is preparing a Disaster Recovery Plan (DRP) to deal with the growing technological advancements with storing and sharing ePHI, at this moment in time the majority are still lagging behind. When your company’s data or the Protected...
Charity Week: Pack for a Purpose
Make your Travels Meaningful! This week, we are taking a break from our usual HIPAA Blogs to spotlight Pack for a Purpose (PfaP) www.Packforapurpose.org, one of the great charities we work with here at Total HIPAA. With summer in full swing, many of you will be taking...
Does HIPAA Restrict Healthcare Professionals from Communicating with Family and Friends?
Buddy Dyer, the mayor of Orlando, requested a waiver of the HIPAA rules following the June 12 shooting at Pulse Nightclub. Families and loved ones were inquiring about the status of patients located at local hospitals, but were not provided timely reports. Many of the...
Why an Employer Group Has to Be HIPAA Compliant
We are often asked why employers should worry about being HIPAA compliant when HHS says that employers are exempt from HIPAA Privacy & Security rules. It is true that employers are exempt but the group health plans that they sponsor must be compliant. Your HR...