Select
Code Sets
Indexes
Code Sets and
Indexes
Tools
Publications
Advanced Search
Home
Newsletter
Health Information Compliance Alert
Health Information Compliance Alert
Health Information Compliance Alert - 2016; Volume 16, Number 12
Case Study:
Malware Issue Highlights Large Organization Need for HIPAA Security Plan
Lack of firewall in secondary systems shows why risk analysis is crucial in healthcare s...
Read more
Compliance:
Be MACRA Ready: Navigate the Certified Health IT Product List
Starting Jan. 1, your payment might depend on the quality of your EHR. Despite the al...
Read more
Clip And Save:
Know These MIPS Measures for the Advancing Care Information Transition
With two paths for success, MACRA’s new EHR requirements offer options for engagem...
Read more
HIPAA:
Feast on Patient Fodder in the New Year -- But, Make Sure It's HIPAA-Compliant
Utilize HIPAA-friendly feedback for a 2017 revenue boost. With the quality of your med...
Read more
Toolkit:
Close Up Your Practice Loopholes with These Authentication Tips
With cyberattacks on the rise, make safeguarding data an end-of-year priority. Hackin...
Read more
Enforcement News:
Fraudulent Cybersecurity Firm Masquerades As the OCR in Phishing Scam
Plus: ONC Offers Webinar on Changes to Health IT Certification Falling in line with c...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 11
Compliance:
Secure Texting is Essential to Keep Patient and Practice e-PHI Safe
HIPAA-compliant messaging helps practices maintain their patients’ privacy. Mob...
Read more
Cybersecurity:
GAO Calls on HHS to Tighten Cybersecurity Guidance, Oversight
Report highlights the security issues that threaten federal electronic health informatio...
Read more
It's More Than Just Chit Chat:
7 Things to Look For in a Texting App
We take texting for granted, often forgetting that SMS isn’t secure. Frequently, w...
Read more
Large Scale Breaches Threaten the Privacy and Security of Millions
In its August report about concerns and practices in regard to cybersecurity and how the...
Read more
Toolkit:
Is Your Practice IT Up-To-Date with Advancing Care Information?
You have two short months to prep for the implementation of MACRA’s final rule. ...
Read more
Social Media:
Help, Hype, or Hindrance: Social Media Can Be the Key to Revenue Rewards
Ramp up your social media presence with this cyber advice. Due to the onset of social ...
Read more
Enforcement News:
HHS Final Rule for Certified Health IT Defines Limits with Broad CMS Changes Ahead
Clarity, accuracy, and safety are at the core of technical guidelines to protect public ...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 10
Vendors:
Cutting the Deal: How to Negotiate with EHR Systems Vendors
Beware the ‘kill switch.’ Think you have what it takes to negotiate a cont...
Read more
Ransomware:
When Ransomware Attacks, Here's What You Must Do
Does your breach represent a ‘low probability’ of compromised data? With m...
Read more
Ransomware 101:
A Quick-Start Guide
So there’s new guidance from HHS’s Office of Civil Rights about how to fight...
Read more
Train Your Employees To Fight Ransomware
One of your best defenses against ransomware is an educated staff, points out new HHS&rs...
Read more
Adverse Events:
EHR Is Often a Culprit in Patient-Identification Errors
A picture could be the key to preventing dangerous mistakes. Patient-identification er...
Read more
Vendors:
OCR Nixes the 'Kill Switch'
Vendors can’t hold your patient data hostage. It is not okay for EHR vendors to ...
Read more
Clinical Documentation:
Prevent Copy-Paste Compliance Woes With Clinician Training
For best results, follow CMS’ best practices. When they complain about EHRs, cli...
Read more
HIT:
Looking for Compliance Solutions? Look to the Cloud
Explore these unexpected benefits of abandoning your client-server EHR. You may have h...
Read more
EHR:
8 Tips for Successfully Adopting a New EHR
For best results, provide follow up training sessions. Looking to switch out your EHR?...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 9
Compliance:
Prepare Yourself For Heightened OCR Scrutiny Of Small Breaches
Regional offices will frown on any entities that fail to report security incidents. Be...
Read more
Case Study:
Your New HIPAA Worry: Violations That Could Put You Behind Bars
Watch out: OCR is referring cases to the DOJ for criminal investigation. Historically ...
Read more
Toolkit:
Facts & Figures: Gauge Your Cybersecurity Preparedness
Most healthcare providers have improved their network security — have you? A new...
Read more
Enforcement News:
HIPAA Phase 2 Audits Underway -- BAs: You're Next
Plus: Lack of ‘actual injury’ saves insurer from class-action lawsuits. Ph...
Read more
Reader Question:
Will The Hunt For Pokémon Poke Holes In Your Patients' Privacy?
Question: We have both staff members and patients who are obsessed with the recent ...
Read more
Reader Question:
What Is 'Social Engineering' & How Is It A Threat?
Question: I recently heard about “social engineering” as a security thr...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 8
Case Study:
Nip Your 'Unaddressed Risks' In The Bud Now -- Or Pay Dearly Later
Implement these 5 best practices right away to avoid this hospital’s fate. The s...
Read more
HIPAA Compliance:
Heed 10 Expert Tips To Protect Your Organization Against 'Insider Threats'
Hint: Establish a ‘baseline’ to spot suspicious employee behavior. Althoug...
Read more
Enforcement News:
Beware: OCR's HIPAA Penalties Are Reaching New Heights
Plus: If the C-suite execs are ignoring HIPAA compliance, you’re at risk for huge ...
Read more
Reader Question:
Is 'Malvertising' A Serious Threat To Your Data Security?
Question: What is “malvertising,” and should our clinic be worried abou...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 7
Case Study:
Paradigm Shift: Don't Expect A Small Penalty For A Small Breach
OCR starts treating BAs the same as CEs when it comes to HIPAA enforcement. Look out, ...
Read more
HIPAA Trends:
Brace Yourself For Record-Setting OCR Enforcement Actions This Year
These 6 state AGs are also getting involved in HIPAA enforcement. Are you guilty of on...
Read more
Compliance:
Plot Out Your Organization's Security Incident Response Plan
Follow 7 expert-recommended steps to evaluate, document, and report breaches. With the...
Read more
Toolkit:
Use 4 Categories To Prioritize HIPAA Security Incidents
Know the risks at each incident level to prepare for the consequences. An important fi...
Read more
Enforcement News:
Why The NFL Isn't Immune To HIPAA Breaches Either
Plus: Employee snooping can spur an expensive (and embarrassing) lawsuit. Password pro...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 6
Case Study:
Beware Of Tougher Breach Standards For Mental Health-Related PHI
Do your patients trust your organization to keep their mental health data private? You...
Read more
Data Security:
Ransomware Is Rampant & Your Risk Analysis Might Save You
Study highlights the new trend toward specialized data breach insurance policies. Near...
Read more
Business Associates:
Take 4 Actions Now To Ensure Your BAs Are Prepared For Security Incidents
Consider conducting security audits to evaluate your BA’s security and privacy pra...
Read more
Enforcement News:
Texting Orders? Make Sure You Have These Safeguards In Place
Plus: State negligence laws capture data breach lawsuits that fall through HIPAA’s...
Read more
Reader Question:
Does A Contact Verification Message Mean You'll Have A HIPAA Audit?
Question: Our medical office recently received a contact verification email from OCR. Do...
Read more
Reader Question:
Can You Charge More Than $6.50 For Copies Of Medical Records?
Question: The HIPAA Right of Access rules seem to say that we cannot charge more than a ...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 5
Case Study:
Follow 5 Crucial Steps To Prevent BA Agreement Hazards
Beware of silver-harvesting scams that could put your HIPAA compliance at risk. If you...
Read more
Don't Allow The Media To Cause A HIPAA Debacle In Your Facility
Your media-related policies should focus on protecting patient privacy. Reality televi...
Read more
Data Analytics:
How Joining A CIN May Help You Leverage Your Data For Value-Based Pay
But don’t let your data become a ‘goldmine’ for medical malpractice at...
Read more
Enforcement News:
Why April Was More 'Lion' Than 'Lamb' For HIPAA Breaches
Plus: Find out what new program will replace Meaningful Use. The month of April experi...
Read more
Reader Question:
Which Apps Must Be HIPAA Compliant?
Question: Our clinicians are using more and more apps for a variety of reasons, inc...
Read more
Reader Question:
How Much Will The 2016 OCR Audits Focus On Risk Management?
Question: We’re hearing that the 2016 HIPAA audits will focus a lot on risk a...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 4
Audits:
Phase 2 HIPAA Audits Are Beginning -- Here's How To Survive Them
Focus on these areas to prepare for new round of audits. If you’re one of the &l...
Read more
Toolkit:
Use This HIPAA Audit Checklist To Gear Up For Phase 2
Pay special attention to 5 key areas of PHI safeguards. With the next series of HIPAA ...
Read more
EHRs:
Avoid A Snap-Decision: Weigh The Pros & Cons Of Switching EHRs
Learn the warning signs that tell you the problem isn’t really the system. Think...
Read more
Enforcement News:
Learn 3 Important Lessons From HIPAA Breach At A Research Institution
Plus: Another breach prompts you to get a BA’s signature before providing access t...
Read more
Reader Question:
Do You Need To 'Pre-Audit' Your Business Associates?
Question: When the phase 2 HIPAA audits move to business associates (BAs), does our...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 3
Case Study:
Should You Pay A Ransom To Get Your PHI Back?
Experts weigh in on what you should do in the event of a ransomware attack. Jaws dropp...
Read more
Data Analytics:
Mobile Health Apps: Balance Security With Opportunities
Wearables provide new ways to promote healthy lifestyle among your patients. Smartphon...
Read more
Toolkit:
Use A Cheat-Sheet To Understand Required Vs. Permitted Disclosures
Either way, you need a paper trail with the individual’s signature. When a patie...
Read more
Enforcement News:
Beware Of Posting Patient Testimonials On Your Website
Plus: Get ready for new regs governing substance abuse confidentiality. Watch out: The...
Read more
Reader Question:
When Does HIPAA Trump State Fees For Providing Copies Of PHI?
Question: What should we do if our state law is different from HIPAA regarding fees...
Read more
Reader Question:
How Can You Prevent A Virus From Spreading?
Question: If we find that a virus is introduced to our IT systems, what steps can w...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 2
Case Study:
Lesson Learned: Go The Voluntary Compliance Route
And beware that an ALJ will likely back OCR’s decision. When it comes to HIPAA c...
Read more
Security Rule:
Find Out What The FDA Has In Store For Medical Device Security
Employ these 5 strategies now to add your own layer of protection. Medical devices lik...
Read more
Toolkit:
Take 4 Steps To Complete A Thorough Post-Breach Risk Assessment
Consider what you’ve done to mitigate the risks to the exposed PHI. If you&rsquo...
Read more
Enforcement News:
Pay Attention To Risky BYOD Trends
Plus: Your mobile health app could be the weak link in your security chain. The emergi...
Read more
Reader Question:
What Is 'Ransomware' & How Can You Combat This Threat?
Question: We’ve been hearing a lot about “ransomware” lately. Is ...
Read more
Reader Question:
Is Life Insurance Data Considered PHI?
Question: Is personal information collected, stored, and transmitted as part of a l...
Read more
Reader Question:
Do You Need To Provide Patients With Really Old Health Data?
Question: A patient has asked for copies of his medical records, but he wants recor...
Read more
Health Information Compliance Alert - 2016; Volume 16, Number 1
Privacy Rule:
Learn How HIPAA Will Become Less Of A Barrier To Background Checks For Firearms
Understand the rules and requirements surrounding the federal mental health prohibitor. ...
Read more
Case Study:
Take A Hard Look At Your Last Risk Analysis To Avoid Hefty Penalties
Beware: OCR is stepping up its enforcement game in wake of OIG reports. If you’r...
Read more
Compliance:
Are You Complying With The 6 Key Aspects Of HIPAA's Access Rights?
Learn how HIPAA rule and EHR Incentive Program differ and interact. If you’re un...
Read more
Enforcement News:
Check Out The Newly Redesigned OCR Website
Plus: Collections on unpaid medical bills gets provider into HIPAA trouble. The HHS Of...
Read more
Reader Question:
What Is '2-Factor Authentication' & When Must You Use It?
Question: There’s some confusion in our medical office regarding what “...
Read more
Reader Question:
Do You Have To Provide Electronic Copies Of Paper Records?
Question: A patient has requested electronic copies of his health records, some of ...
Read more
Available Years:
2016
2015
2014
2013
2012
2011
2010
2009
2008
2007
2006
2005
2004
2003
2002