9 07, 2019

California Protects Residents with the Introduction of the California Consumer Privacy Act

2019-07-22T13:31:03-04:00July 9th, 2019|

The ways in which businesses collect and use consumer data have been a cause for concern for many people. The sale of personal information has been largely unregulated, causing many states to implement their own privacy laws to better protect the personal information of their residents.  The California Consumer Privacy Act (CCPA) enacted on June 28, 2018, established four rights in regards to personal information. This summary includes: [...]

5 07, 2019

Federal Class Action Suit Filed Against UChicago and Google for Alleged HIPAA Violation

2019-07-09T17:24:41-04:00July 5th, 2019|

Matt Dinerstein, a former patient at the University of Chicago Medical Center, is accusing the university, its’ medical center, and Google of violating his privacy rights. From 2009 to 2016, UChicago and Google partnered to conduct medical research. Through the partnership, the university shared patient records with Google for research purposes.  HIPAA law dictates that before protected health information (PHI) can be shared for research purposes, the data needs [...]

3 07, 2019

OCR Provides New FAQs to Clarify How PHI Should be Shared Between Covered Entities

2019-07-03T13:26:28-04:00July 3rd, 2019|

The Health Insurance Portability and Accountability Act (HIPAA) dictates how and when protected health information (PHI) can be shared. There has been some confusion around sharing PHI amongst covered entities (CEs). As such the Office of Civil Rights (OCR) released two new FAQs to further clarify the law.  FAQ 1: Health Care Operations Disclosure  The first FAQ relates to when CEs should be sharing PHI in relation to [...]

1 07, 2019

Data Breach Lasting 7 Months Exposed the PHI of 501 Individuals

2019-07-01T13:42:15-04:00July 1st, 2019|

Communities Connected for Kids (CCK), a Florida-based organization that provides coordination and oversight of the child-welfare system, recently discovered a hack that lasted 7 months. In March 2019, one of CCK’s vendor’s noticed suspicious activity in one of its databases, and reported the incident to CCK. Subsequently, the CCK hired a third-party forensic investigation team to look into the matter. Through the investigation, it was discovered that an [...]

28 06, 2019

Phishing Attacks on the Rise

2019-06-28T14:43:00-04:00June 28th, 2019|

Hackers utilizing phishing attacks disguise themselves as a trusted entity, to send their victims links with malicious content, either through email, text, or instant message. When the receiver clicks the link, hackers are able to gain access to their system. Organizations that are maintaining or transmitting protected health information (PHI) must have safeguards in place to protect their data.  The Department of Health and Human Services (HHS) identifies [...]

25 06, 2019

The Importance of HIPAA Compliance for Home Health Care:

2019-06-27T17:38:46-04:00June 25th, 2019|

The Importance of HIPAA Compliance for Home Health Care: Now, do not let the title fool you. We are not trying to say that HIPAA compliance matters more for Home Health agencies. HIPAA is still a federal regulation, which all organizations within the healthcare space must adhere to. The reason for why I am choosing to focus on home health care today is due to the nuances of the [...]

21 06, 2019

Breach of LabCorp and Quest Diagnostics Puts a Spotlight on HIPAA Vendor Oversight

2019-06-24T08:56:39-04:00June 21st, 2019|

Cybersecurity should be at the top of the list for anyone working in the healthcare industry. Unfortunately, cyberattacks in healthcare are a growing concern. A cyberattack occurs when a hacker gains access to you computer network or system in an attempt to destroy or corrupt data. The amount of sensitive information or personal health information (PHI), used in a healthcare setting is vast.   Protect Your Patients As [...]

19 06, 2019

HIPAA Cloud Requirements Providers Must Meet

2019-07-10T15:40:25-04:00June 19th, 2019|

The adoption of cloud computing, especially in the healthcare industry, is widespread. Using a HIPAA cloud service allows users to access their data from multiple devices anywhere that has Internet, making traditional methods of storing data a thing of the past. The downside of cloud computing is the risk of having your data stolen or deleted by hackers. In healthcare, safeguarding protected healthcare information (PHI) and abiding by [...]

17 06, 2019

Phishing Attacks Compromise the PHI of Thousands

2019-06-25T16:59:41-04:00June 17th, 2019|

Phishing attacks can be difficult to detect by nature. Attackers disguise themselves as a trusted entity, and send their victims links with malicious content, either through email, text, or instant message. When the receiver clicks the link, hackers are able to gain access to their system. Organizations that are maintaining or transmitting protected health information (PHI) must have safeguards in place to protect their data from email phishing [...]

14 06, 2019

WannaCry Ransomware Infects 40% of Healthcare Delivery Organizations

2019-06-17T16:14:27-04:00June 14th, 2019|

Ransomware attacks are increasingly prevalent in the healthcare community. Ransomware attacks use malicious software to gain access to a computer system, usually disabling the system, until an amount of money is paid. The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) released guidance advising organizations on how to protect themselves against these types of attacks. How to Mitigate Your Risk of Ransomware Attacks The [...]