Health Information Compliance Alert
Toolkit:
Take 4 Steps To Complete A Thorough Post-Breach Risk Assessment
Published on Fri Feb 19, 2016 
PDF
PDF
If you’re confused about what constitutes a breach under HIPAA, you’re not alone. But if you follow these steps and evaluate your answers to certain key questions, you can make a sound breach determination.
Under HIPAA, an impermissible use or disclosure of protected health information (PHI) is a breach unless the covered entity (CE) or business associate (BA) demonstrates that there is a low probability that the PHI was compromised, according to Clearwater Compliance LLC. And to make this determination, HIPAA requires you to perform a risk assessment on at least these four factors:
Source: https://clearwatercompliance.com/hipaa-hitech-news/suffered-data-breach-4-step-assessment/.
Other Articles in this issue of
Health Information Compliance Alert
- Case Study:
Lesson Learned: Go The Voluntary Compliance Route
And beware that an ALJ will likely back OCR’s decision. When it comes to HIPAA [...] - Security Rule:
Find Out What The FDA Has In Store For Medical Device Security
Employ these 5 strategies now to add your own layer of protection. Medical devices like [...] - Toolkit:
Take 4 Steps To Complete A Thorough Post-Breach Risk Assessment
Consider what you’ve done to mitigate the risks to the exposed PHI. If you’re confused [...] - Reader Question:
What Is 'Ransomware' & How Can You Combat This Threat?
Question: We’ve been hearing a lot about “ransomware” lately. Is this similar to malware? How can [...] - Reader Question:
Is Life Insurance Data Considered PHI?
Question: Is personal information collected, stored, and transmitted as part of a life insurance (rather than [...] - Reader Question:
Do You Need To Provide Patients With Really Old Health Data?
Question: A patient has asked for copies of his medical records, but he wants records from [...] - Enforcement News:
Pay Attention To Risky BYOD Trends
Plus: Your mobile health app could be the weak link in your security chain. The [...]
View All