Geisinger Latest Victim of Blackbaud Breach

The Blackbaud breach has been the subject of headlines for weeks, and Geisinger was one of their clients. Geisinger recently announced that the Blackbaud breach affected 86,412 of the healthcare organization’s patients. More details on the Blackbaud breach and Geisinger are discussed below. Blackbaud Breach Claims 6.3 Million Victims Before we discuss what happened with Geisinger, it is important to understand how [...]

2022-05-06T14:04:11-04:00October 22nd, 2020|

Is LiveChat HIPAA Compliant?

LiveChat is a customer service software platform that provides online chat, web analytics, and help desk services.These can be useful tools for any business, but as a healthcare organization, you must ensure that the software is HIPAA compliant. Is LiveChat HIPAA compliant? The answer to this is discussed below. Is LiveChat HIPAA Compliant: Security Features When LiveChat is used by a healthcare [...]

2020-11-20T12:28:22-05:00October 15th, 2020|

Lawsuit Claims EHR Violated HIPAA Right of Access

A lawsuit filed by Sherry Russell claims that HealthAlliance Hospital and Ciox Health denied access to her deceased husband’s medical records. If her claims are true, the healthcare organizations violated the HIPAA right of access provision. More details about the lawsuit are discussed below. HIPAA Right of Access Violation Sherry Russell requested her deceased husband’s medical records so that she may file [...]

2020-11-16T09:02:40-05:00September 23rd, 2020|

Are Search Engines Compromising PHI Security?

It was recently discovered that advancements in search engine capability may pose a risk to PHI security. Researchers from American College of Radiology (ACR), Radiological Society of North America (RSNA), and Society for Imaging Informatics in Medicine (SIIM) warned healthcare professionals and radiologists of the risk of using medical images for educational purposes. How Can Search Engines Identify Medical Images Optical Character [...]

2022-05-06T14:38:17-04:00September 8th, 2020|

New OCR Guidance on Completing a Risk Assessment

Recently, to provide HIPAA covered entities and business associates with assistance in completing their risk assessments, the Office for Civil Rights (OCR) released guidance. The OCR guidance lays out a detailed list of IT asset inventory steps that should be taken when completing a risk analysis. More details on the OCR guidance are discussed below. Compliancy Group offers clients a full HIPAA [...]

2022-05-06T13:36:53-04:00August 27th, 2020|

HIPAA Compliant Texting and Email

As more organizations continue to work remotely, they are relying on texting and email as means of communication. For organizations that work in healthcare, it is important to determine if the communication tool they use is HIPAA compliant. HIPAA compliant texting solutions and email platforms are discussed below. HIPAA Compliant Texting and Email: What You Need to Know An essential component of HIPAA is ensuring the confidentiality, integrity, and [...]

2022-04-07T22:57:44-04:00August 10th, 2020|

$1,040,000 OCR Settlement Reached for Stolen Unencrypted Laptop

Lifespan Affiliated Covered Entity (“Lifespan ACE”) is a HIPAA-covered entity. This not-for-profit health system includes three academic teaching hospitals, a medical and mental health services hospital, and Rhode Island’s largest nonprofit behavioral healthcare provider. In April of 2017, Lifespan’s parent company and business associate, filed a breach report with the Department of Health and Human Services’ (HHS) Office for Civil Rights. The resulting OCR investigation determined that an unencrypted [...]

2022-05-06T13:55:37-04:00July 28th, 2020|

Why Data Protection in Healthcare is Essential

The rate at which healthcare entities are targeted by hackers has increased alarmingly over the course of the past several months. This is mostly due to the healthcare industry’s focus on combating the coronavirus pandemic. As such, data protection in healthcare has fallen by the wayside. The importance of data protection in healthcare and tips on what security measures to implement are discussed below. Is [...]

2022-05-06T13:55:37-04:00July 27th, 2020|

Cyber Attacks on Cloud Services Rise 630%

McAfee conducted a study on cyber attacks on cloud services to determine if there has been an increase in attacks since the COVID-19 pandemic. The results are staggering, exposing a 630% rise in cyber attacks on cloud services since January 2020. With an increase of 50% in the use of cloud services, and a 600% increase in collaboration services, this discovery is troubling to say the least. *McAfee Cloud [...]

2022-05-06T14:38:18-04:00June 11th, 2020|

Exposure Notification Privacy Act Aims to Regulate Contact Tracing Apps

Recently, a bipartisan group of United States Senators introduced the Exposure Notification Privacy Act (ENPA). This bill aims to regulate exposure notification and contact tracing apps that will be used to monitor and control COVID-19 spread. What is Contact Tracing? Contact tracing is the process of identifying people who may have come into contact with a person infected by a virus. COVID-19 contact tracing apps [...]

2022-05-20T19:16:42-04:00June 9th, 2020|