Today HHS released the long-awaited modifications to the HIPAA privacy, security, enforcement and breach notification rules. A full copy of the rule can be found here. In a related press release HHS described the impact of the rule as follows: “The changes in the final rule making provide the public with increased protection and control [...]

After two years, OCR recently released its Guidance Regarding Methods for De-Identification of PHI in Accordance with HIPAA.  The guidance is designed to help covered entities understand de-identification, how protected health information is de-identified, and the options available for correctly performing de-identification.  De-identification removes identifiers from PHI and reduces privacy risks to individuals allowing the secondary [...]

Looking for more detail on the Meaningful Use Stage 2 requirements?  CMS has conveniently created specification sheets for each Meaningful Use measure.  These sheets explain in detail each numerator and denominator eligible professionals and hospitals much achieve to be eligible for the EHR Incentive Payments.  The sheets also contain the certification and standards criteria issued from [...]

Earlier this month Verizon announced its cloud services aimed at healthcare providers.  These services are designed to be HIPAA compliant including providing the necessary physical, technical and administrative safeguards required by the HIPAA Security Rule.  Most notably with this announcement, Verizon has agreed to execute a Business Associate Agreement.  Verizon’s press release expresses its commitment to top [...]

So how much can a HIPAA violation cost?  Below is a roll-up of some of the larger HIPAA penalties and further information about current enforcement.     Infographic authored by Inspired eLearning, providers of online security awareness and training programs. To view the original post, check out the original HIPAA violation infographic.

After much delay and anticipation, the Stage 2 Meaningful Use Final Rules were announced late last week.  Though the primary focus of the new rules were to update (and increase) the meaningful use objectives and measures for the Medicare and Medicaid EHR Incentive Program, significant additional components regarding the EHR Incentive Program were also included. [...]

Typical breach scenarios often include a stolen laptop or other device and the extraction of medical records by those thieves.  Now a new type of breach has occurred, hackers breaking into systems and holding PHI for ransom.  Bloomberg recently reported a breach in which hackers burrowed into the computer network of a surgical practice in [...]

The creation of medical and health related apps for mobile devices such as phones and tablets is making quite a splash.  The New York Times has recently run at least three articles in the past few months on mobile apps and healthcare:  Monitoring Your Health with Mobile Devices, The Therapist May See You Anytime, Anywhere, and [...]

ONC has recently released a new “Guide to Privacy and Security of Health Information” which incorporates tips on complying with HIPAA Privacy and Security as well as meeting related meaningful use measures.  The guide is designed for clinical providers and focuses on the following: Privacy & Security and Meaningful Use Security Risk Analysis and Management Tips Working [...]

The U.S. Department of Health and Human Services (HHS) has entered into another settlement for the violation of the Health Insurance Portability and Accountability Act of 1996 (HIPAA), this time with a small physician practice that violated HIPAA while using Internet-based calendar and email services. Phoenix Cardiac Surgery, P.C., of Phoenix and Prescott, Arizona, has [...]