HIPAA Enforcement: Who Enforces HIPAA?
There are significant consequences for breaking the HIPAA laws. The HIPAA Rule is enforced through several methods. HIPAA is a federal law, which is enforced by the Department of [...]
HIPAA Genetic Information
Before passage of the 2013 HIPAA Omnibus Rule, genetic information was not specifically included in the HIPAA regulations’ definition of protected health information (PHI). With passage [...]
HIPAA Requirements for Sending PHI
Healthcare entities require a means to easily share protected health information (PHI). When sending PHI it is imperative to keep HIPAA requirements in mind. The Health [...]
Phishing Attacks at Magellan Health Subsidiaries
Magellan Health is a managed care provider based in Arizona. Recently, Magellan Health discovered that two of its subsidiaries suffered phishing attacks. The phishing attacks have [...]
HIPAA Security Risk Analysis Step 6: Determining the Level of Risk to ePHI
The HIPAA Security Rule requires that covered entities (health plans, healthcare clearinghouses, and healthcare providers who electronically transmit any health information in connection with a HIPAA [...]
Emergency Access Procedures Under the HIPAA Security Rule
Under the HIPAA Security Rule, covered entities (CEs) and business associates (BAs) are required to implement appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and availability [...]
OCR’s Strict Enforcement of HIPAA Laws on Healthcare Organizations
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was designed to protect individuals' health information. The HIPAA Privacy Rule ensures the protection of “individually identifiable health information” [...]
700,000 Patients Affected by August Healthcare Breaches
August was another month that saw several large healthcare breaches. There were a total of 44 August healthcare breaches reported to the Department of Health and [...]
OCR Reaches First Settlement Ever Under Right of Access Initiative
Earlier this year, the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) announced an initiative. Under the initiative, OCR stated that a [...]
HIPAA Security Risk Analysis Step 5: Determining the Potential Impact of Threat Occurrence
The HIPAA Security Rule requires that covered entities (health plans, healthcare clearinghouses, and healthcare providers who electronically transmit any health information in connection with a HIPAA related transaction), and [...]
