7 02, 2017

HIPAA Compliance Survey

2017-07-12T15:55:19+00:00 February 7th, 2017|

NueMD (Atlanta, GA), a cloud-based medical billing service, administered a HIPAA Compliant Survey in 2014. In 2016, they issued a follow-up survey to measure the change in HIPAA compliance and awareness over time. The 2016 NueMD survey received 927 total responses, 86% from medical practices and 6% from billing companies. Of these respondents, 462 reported involvement with patient care, while 465 reported involvement with administrative duties. The survey measures knowledge [...]

4 02, 2017

Multi-Million Dollar HIPAA Fines Underscore Widespread Security Violations

2017-02-07T20:47:08+00:00 February 4th, 2017|

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has issued two HIPAA fines totaling $5.4 million. In both cases, OCR investigations revealed widespread violations of the HIPAA Privacy and Security Rules. Both cases demonstrate OCR's commitment to continued enforcement under the Trump administration. In 2016, fines totaled almost $24 million. Since the start of 2017 alone, OCR has levied over $5.8 million in fines [...]

12 01, 2017

First Settlement for Violation of HIPAA Breach Notification Rule

2017-09-07T17:11:10+00:00 January 12th, 2017|

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced its first HIPAA settlement of 2017 with Presence Health for $475,000. This settlement is the first in the history of HIPAA enforcement to be levied for failure to properly notify patients of a breach of unsecured protected health information (PHI). The breach first occurred in October 2013. Under the HIPAA Breach Notification Rule, breaches affecting [...]

20 12, 2016

Over Half a Million Affected by Data Breach at Georgia-based Orthopedic Firm

2017-01-30T16:35:32+00:00 December 20th, 2016|

The Atlanta, Georgia-based Peachtree Orthopedics reported that the records of over half a million patients were compromised in a cyber-attack in September of 2016. The firm first notified patients affected by the breach in October after reporting the incident to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR). At the time the breach occurred Peachtree had yet to release an official statement on the [...]

30 11, 2016

2017 HIPAA Compliance Checklist

2017-09-14T17:27:52+00:00 November 30th, 2016|

In 2016 alone, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) levied over $25 million in fines. Enforcement has more than doubled since 2015's $10 million in fines. If this trend continues, 2017 is poised to be the most costly year for HIPAA enforcement since the regulation first took effect in 1996. To keep ahead of 2017 HIPAA fines, it's essential for health care [...]

28 11, 2016

Malware Costs UMass $650k in HIPAA Violations

2016-11-28T19:18:31+00:00 November 28th, 2016|

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a $650,000 settlement with the University of Massachusetts Amherst (UMass) in the wake of potential HIPAA violations. UMass reported a malware incident in June of 2013. According to the investigation, a workstation in the university's Center for Language, Speech, and Hearing was infected with malware, resulting in the "impermissible disclosure" of the electronic protected health [...]

16 11, 2016

Are Web-Forms HIPAA Compliant?

2017-09-01T15:16:15+00:00 November 16th, 2016|

Many companies use online form builders to easily gather information from clients or patients. It becomes a simple way to process contact information or manage leads. But when health care information is involved, HIPAA compliance becomes an important consideration. How can organizations protect privileged data captured by these web-forms? The HIPAA Privacy Rule specifically limits the way that patient data and protected health information (PHI) can be handled. It [...]

10 11, 2016

Pharmacy Reps Sentenced for Criminal HIPAA Violations

2017-07-12T15:40:30+00:00 November 10th, 2016|

U.S. District Court judges sentenced three former district managers of a pharmaceutical firm to a series of pharmacy HIPAA violations that have been linked to health care fraud. Landon Eckles, Timothy Garcia, and Jeff Podolsky are former district managers of a pharmaceutical firm. According to a release by the District of Massachusetts U.S. Attorney's Office (USAO), the three perpetrators were committed pharmacy HIPAA violations by illegally accessing patients’ PHI in [...]

11 10, 2016

HIPAA for Accountants: How Compliance-as-a-Service can Grow your Healthcare Business

2016-10-11T18:59:23+00:00 October 11th, 2016|

Accountants working in the health care industry need a HIPAA compliance solution that works for their company and for their clients' businesses. But the question becomes: how can I best leverage my current business by adding a HIPAA compliance offering for my clients? Compliance-as-a-service is a fast-growing segment of the software-as-a-service market that integrates seamlessly into offerings that accountants already provide their clients. But because of the sensitive data [...]