Recent Articles

  • HIPAA 2024 Year in Review – Ransomware, Risk Analysis, and Right of Access Remedies

    Published On: December 20th, 2024

    In 2024, the Department of Health and Human Services’ (HHS) Office for Civil Rights announced a series of enforcement actions against entities that violated, or potentially violated, one [...]

  • ISO 27001 vs. NIST: How to Leverage the Best of Both

    Published On: December 20th, 2024

    Monitoring compliance with ISO 27001 and NIST standards can be complex and time-intensive. Although they both advance information security and patient privacy, neither framework precisely matches the [...]

  • Using the Texas Health and Human Services Commission Medicaid Exclusion List

    Published On: December 18th, 2024

    In just the first three quarters of 2024, 155 providers have been added to the Texas Health and Human Services Commission Medicaid exclusion list. Over 4 million [...]

  • What Should I Know About Health Information Exchange?

    Published On: December 16th, 2024

    The ability to transfer protected health information (PHI) is crucial to providing quality care and saving healthcare costs. There are several advantages to health information exchange, such [...]

  • Red Flag Rules in Healthcare: What Compliance Officers Need to Know

    Published On: December 13th, 2024

    Maintaining healthcare compliance includes being vigilant for warning signs of potential waste, abuse, and fraud due to identity theft. Healthcare red flag rules help your organization protect [...]

  • OCR Enters Into $250,000 Settlement with Healthcare Clearinghouse Over Potential HIPAA Violations

    Published On: December 12th, 2024

    In December of 2024, the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) announced a $250,000 settlement with Puerto Rico-based healthcare clearinghouse Inmediata Health [...]

Blog Categories

  • 42 CFR Part 2

    42 CFR Part 2 dictates rules for the confidentiality of substance abuse records. Find out when providers are permitted to share records and when they are not.

  • Healthcare Compliance

    Healthcare compliance is complex, especially when you have to meet multiple compliance standards. Learn how to navigate HIPAA, OSHA, and SOC 2 requirements.

  • Healthcare Data Breach Report

    Each month, we review what caused healthcare data breaches and how they could have been prevented. Learn how to protect your business from breaches and fines.

  • HIPAA Compliance

    Whether you’re a healthcare provider, health plan, or healthcare vendor, you must meet HIPAA standards. Learn what’s required for HIPAA compliance and how to implement a successful program.

  • HIPAA News

    Keep up to date on HIPAA news by checking in with us. We will provide you with information on changes to HIPAA law, healthcare breaches, HIPAA violations, and OCR fines.

  • HIPAA Violation Fines

    Healthcare organizations that fail to meet HIPAA Privacy, Security, or Breach Notification Rules can face HIPAA violation fines. Find out who has been fined and how they could have prevented penalties.

  • MACRA MIPS

    To be eligible for reimbursement under the Merit-based Incentive Payment System (MIPS), you must meet Medicare Access and CHIP Reauthorization Act (MACRA) standards.

  • OCR Enforcement

    The Office for Civil Rights (OCR) is the enforcing body of HIPAA. The OCR conducts investigations into potential HIPAA violations, issuing judgments that can result in settlements.

  • OIG Compliance

    The Office of Inspector General (OIG) released guidance, referred to as the seven elements of compliance. Find out how to implement an effective compliance program.

  • OSHA Healthcare Compliance

    OSHA healthcare compliance ensures a safe and healthy environment for patients and staff. Find out how to meet various OSHA standards specific to healthcare.

  • Right of Access

    The HIPAA Right of Access standard requires healthcare providers to comply with patient record requests. This standard is the most cited in HIPAA settlements. Learn the rules.

  • SOC 2 Compliance

    The American Institute of Certified Public Accountants (AICPA) created a cybersecurity framework called Service Organization Control Type 2 (SOC 2). Learn how about SOC 2 compliance.