Home Health & Hospice Week

HIPAA:

Stolen Unencrypted Laptops Lead To Nearly $2 Million In HIPAA Fines

Published on Fri May 16, 2014

Learn a lesson from these recent HIPAA cases.

Two recently announced HIPAA settlements show that the HHS Office for Civil Rights is cracking down on unprotected data contained on mobile devices. And if you’re not already encrypting your mobile devices, you could be next in the OCR’s crosshairs.

Beware: HHS is Handing Down Tougher CAPs

Background: Stolen unencrypted laptops were to blame for two HIPAA cases, which totaled nearly $2 million in settlements, as well as extensive corrective action plans (CAPs). Concentra Health Services, a subsidiary of Humana Inc., agreed to a $1.7 million settlement with HHS for alleged HIPAA violations related to a breach notification stemming from a stolen unencrypted laptop.

According to Concentra’s HHS-ordered CAP, the company must:

• Implement a security management process, including a risk analysis and risk management plan;
• Provide written updates to HHS describing encryption requirements for all devices;
• Provide security awareness training for all workforce members;
• Submit an Implementation Report to HHS; and
• Submit Annual Reports to HHS.

QCA Health Plan, a health insurance provider in Arkansas, paid out a smaller settlement of $250,000, also due to a breach involving a stolen unencrypted laptop. The laptop contained the protected health information (PHI) of 148 individuals. Under QCA’s CAP, the insurer must:

• Implement a security management process, including a risk analysis and corresponding risk management plan;
• Provide security awareness training for all workers who have access to electronic PHI; and
• Submit Annual Reports to HHS.

Home Health & Hospice Week

Face-To-Face:
You May Get A Breather On The Narrative In F2F Medical Review
Warning: Don’t stop collecting the troublesome piece of F2F. The home care industry hasn’t been [...]

Fraud & Abuse:
Latest Fraud Takedown Features Home Care Schemes
Physician kickbacks included in charges. The nation’s Medicare fraud hot spots have produced a new [...]

Finance:
Rebasing Cuts Take A Bite Out Of Chains' Bottom Lines
Weather also puts a dent in publicly traded companies’ earnings in Q1. The nation’s largest [...]

HIPAA:
Stolen Unencrypted Laptops Lead To Nearly $2 Million In HIPAA Fines
Learn a lesson from these recent HIPAA cases. Two recently announced HIPAA settlements show that [...]

Compliance:
Use These Real-World Tips To Avoid Laptop HIPAA Breaches
OCR is pushing entities harder to perform risk assessments. Two breach cases based on stolen [...]

Industry Notes:
MAC Rejects More Than 2/3 Of Long-Stay Hospice Claims
Key: Your documentation must continue to support a six-month prognosis. If you’re submitting hospice claims [...]

Industry Notes:
HHS Secretary Confirmation Hearings Proceed
The current Director of the White House Office of Management and Budget appears poised to [...]

Industry Notes:
Start HIS Training Now
The July 1 deadline to start administering the Hospice Item Set is creeping closer. Take [...]

Industry Notes:
Get Concurrent Care Demo Answers With New Q&As;
Not sure if you want to participate in Medicare’s new concurrent care demonstration? It will [...]

Industry Notes:
CMS Change Smoothes PECOS-Supporting Process
Are you still working hard to get all your docs signed up in PECOS, so [...]

Industry Notes:
Aggressive HIPAA Audits To Hit This Fall
On top of everything else, more aggressive HIPAA audits may be in your future. If [...]

Industry Notes:
Consult Corrected Hospice Wage Index Table
Wondering exactly how the proposed payment rates for 2015 will affect your hospice (see Eli’s [...]

Industry Notes:
Tune Into Special Forum On F2F Template May 20th
Home health agencies have high hopes that CMS will eliminate the physician narrative portion of [...]

Industry Notes:
OIG Urges Prorated DRG When Patients Go To Hospice
Referrals to hospice from the hospital may become more scarce, if legislators listen to a [...]

View All