Healthcare entities are often the target of ransomware attacks. Ransomware attacks occur when a hacker enters an organization's network, encrypting or stealing sensitive data, demanding a sum of money [...]
Protected health information (PHI) is any individually identifying health information classified by the Department of Health and Human Services (HHS) into 18 identifiers, such as name, [...]
The HIPAA Privacy Rule permits patients to request that PHI contained in their medical records, be amended. The right is not unlimited, however, and a covered [...]
HIPAA Role-Based Access is a key concept of the HIPAA Security Rule. Under the Security Rule, healthcare organizations are required to implement access controls. Role-based access controls [...]
A recent report from Ciitizen, a patients’ rights advocacy group, has revealed more than half of healthcare providers (51%) are not fully compliant with the HIPAA Right of Access [...]
Cloud service providers (CSP) are businesses that provide network services, business applications, or infrastructure, in the cloud. The services are hosted in a remote data center that can be [...]
A managed service provider (MSP) is an entity that remotely manages a covered entity’s IT infrastructure, and/or end-user systems. Managed service providers who work with clients [...]
Covered entities’ employees play an important role in keeping PHI and ePHI secure. The following HIPAA covered entity employee tips can be used by your organization as part of a [...]
Researchers for the journal Health Services Research recently conducted a study to determine whether there is a relationship between hospital data breaches and patient deaths. Of particular interest was [...]
Before passage of the 2013 HIPAA Omnibus Rule, genetic information was not specifically included in the HIPAA regulations’ definition of protected health information (PHI). With passage [...]
© 2024 Compliancy Group LLC. All Rights Reserved | Terms of Use | Privacy Policy
