THE TOTAL HIPAA
Resource Library
Featured Articles
Password Manager Recommendations for Simpler, Better Security
A Password Manager Can Help Pave the Way to HIPAA Compliance We’re all storing more information online than ever before. The average Internet user has at least 90 online accounts, and within three...
Why You Should Be Using Two-Factor Authentication
While strong, complex passwords are an effective first line of defense when securing business accounts and applications, they are not fool proof and can be compromised if a hacker gains access to...
PHI Retention: How Long Should You Hold on to Protected Health Information?
Do you need to retain PHI after termination of a contract? There are several different answers to this question, based on the type of services you provide and the reasons why you have access to PHI....
Choosing a HIPAA Information Security Officer
Last week we addressed what a company needs to think about before appointing a Privacy Officer. Now we address the ...
Qualifications for a HIPAA Privacy Officer
This week I had a client ask me for a list of qualifications for a Privacy Officer. This seemed like a nice blog ...
Password Management Programs and HIPAA
This question has come up multiple times over the past few weeks, especially with the HeartBleed issue a few weeks ...
HIPAA in the Cloud
This week we have a client who is trying to decide whether they are going to supply mobile phones for their ...
Is Skype HIPAA Compliant and Have You Updated Your BA Agreements?
This week we had an interesting discussion on Twitter about whether Skype was HIPAA Compliant or not? Well, there ...
Heartbleed and HIPAA
On April 7th, the news hit the wire that there is a serious bug in the OpenSSL program - one of the most popular ...
Is it a breach, or not?
This week we had an interesting question come in. One of our clients was copied by a general agent in a response ...
Happy Spring!
We’ve been having some lovely spots of weather here, well minus ice, and a Nor’easter is projected this week… It ...
HIPAA and Your Contract Employees
This week we are dealing with contract employees or independent contractors, either of which are usually paid by ...
Do Business Associates need to report a breach to HHS, or to the Covered Entity?
Hello again, this question was posed to us this past week by one of our clients.
Do Business Associates need to ...
What?!?! I need a BA Agreement with my email provider?
Here’s a question from our twitter feed this past week. Like most things in life, I think this needs a little more ...
Are Employers Covered Entities?
This question came from one of our partners last week, and I think this is worth a full blog topic. Are employers ...
Windows XP™ is Gasping for Breath – HIPAA Compliance Becomes an Issue
Microsoft: Bring out your dead…. Bring out your dead!
Windows 8: Here’s one!
Windows XP: I’m not dead ...
Updates to Training
We have been busy adding to our already comprehensive training and updating our programming to make your user ...
Answering Questions: Do I need a business associate agreement for my web provider?
Today’s blog is going to be a little free form. I’m going to answer some questions that our clients have ...
Vlog #5-BYOD or Bring Your Own Device
In this week's vlog, I cover what you need to do before allowing employees to use their personal devices ...
Vlog #4–BA and Subcontractor Responsibilities
This week I talk about your responsibilities as a Business Associate and/or Subcontractor.
By ...
Vlog #3–Penalties and Fines
By Jason Karn
Google+
Vlog #2–Risk Assessment Vs. Risk Analysis
Today we discuss what a Risk Analysis is versus what a Risk Assessment is, another issue that you may face when ...
Vlog #1–Encrypting Texts
Texts are sent by the majority of people, even multiple times a day. When those texts contain PHI it is vital that ...
Take control of your compliance.
