Survey Says: Majority Missing Key Piece of HIPAA Compliance

A recent poll of webinar attendees found that barely one-third may be HIPAA compliant, based upon responses to a single question. Conducting an annual Security Risk Analysis is one of the foundational requirements of HIPAA compliance. Still, only 33.5 percent of 146 respondents answered affirmatively to the question, “Have you completed your HIPAA Risk Analysis for this year?” The poll was conducted [...]

2022-06-13T15:44:54-04:00June 3rd, 2022|

Does Talking About a Patient Violate HIPAA?

One main focus of HIPAA regulations is ensuring the privacy of the protected health information (PHI) of patients. Most people immediately think about the protection and security of PHI in physical or electronic (ePHI) formats, but what about when PHI is verbalized? Does talking about a patient violate HIPAA? If so, what precautions do healthcare providers need to take to avoid breaching [...]

2022-05-20T16:54:27-04:00May 16th, 2022|

HIPAA & GRC Key to Principled Performance in Health Space

It’s sometimes hard to believe that the acronym GRC (Governance, Risk, Compliance) has been around for less than 20 years. Developed as a response to the financial shenanigans discovered when the dot.com bubble burst, GRC has evolved into an integrated collection of capabilities that enable an organization to achieve objectives reliably, address uncertainty, and act with integrity. Today GRC has expanded far [...]

2022-05-06T17:12:52-04:00May 6th, 2022|

HIPAA Compliant Environment or a Culture of Compliance?

One of the trendy marketing terms being used by equipment and service providers in the security space is “HIPAA Compliant Environment.” It’s usually used to describe items like highly secure protocols, including operational environment controls, workload (VM and application) hardening, data at rest and in transit protection, identity, and access management. All of these tools are very useful to ensure privacy and [...]

2022-05-06T17:03:26-04:00April 29th, 2022|

Is Signal HIPAA Compliant?

Signal is an open-source free-to-use messaging app that proudly proclaims its security and privacy features. With all of these security and privacy features, the question remains: Is Signal HIPAA compliant? HIPAA Compliant Software Usage Under HIPAA, any application or software company whose product “touches” (creates, receives, maintains, or transmits) protected health information (PHI) is considered to be a business associate. For HIPAA [...]

2022-05-06T17:03:29-04:00April 8th, 2022|

Hospital HIPAA Compliance and Staffing Shortages

While staffing shortages continue to afflict the hospital sector, administrators scramble to keep their hospitals adequately staffed. The ones that manage to keep staff are often paying an excessive amount to temporary staff, such as traveling nurses, to maintain their standard of care.  In situations such as these, compliance often falls to the wayside. Achieving and maintaining HIPAA compliance seems like such [...]

2022-05-06T17:03:29-04:00April 6th, 2022|

Compliant HIPAA Communications in Healthcare

One of the longest-lasting impacts of the pandemic may be the creation and adoption of alternative communications methods in the healthcare arena. An HHS study released in December 2021 showed 2020 telehealth usage for Medicare patients increased 63-fold over 2019 (840,000 to 52.7 million). Regardless of the method used, communications such as cloud-based VoIP, telehealth, texting, and email in healthcare must comply [...]

2022-05-06T17:03:30-04:00April 1st, 2022|

Cost of Noncompliance: Breaches, Reputational Damage, and Fines

While some healthcare organizations do not think that becoming HIPAA compliant is worth the investment, failure to comply with HIPAA can come at a much higher cost. The cost of noncompliance can include an increased likelihood of breaches, reputational damage, and HIPAA violation fines.  In addition, the cost of responding to breaches and remediating the vulnerabilities that caused the incident are much [...]

2022-05-06T17:03:32-04:00March 22nd, 2022|