data breach Archives - Page 3 of 4 - Veterans Press, Inc.

Are You Protected from Ransomware? HIPAA & HITECH Act Blog by Jonathan P. Tomes

I have been planning to write a blog post on ransomware since spring 2015 when I was a victim of ransomware. I got a message .. read more

On April 24th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: compliance, data breach, EHR, EPHI, HIPAA, HIPAA compliance, HIPAA violation, HITECH, Jonathan P. Tomes, ransomware, risk analysis

Acting without Accurate Data Is Just Guessing: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Alice M. McCart

For those of you who are still reluctant to perform your first Risk Analysis or to update one from perhaps a few years ago, as .. read more

On April 10th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: Alice M. McCart, audit, breach, compliance, data breach, HHS, HHS audit, HIPAA civil money penalties, HIPAA compliance, HIPAA policies, Jonathan P. Tomes, just guessing, OCR investigation, risk analysis

$1.55 Million Settlement Stresses Importance of Business Associate Agreements: HIPAA & HITECH Act Blog by Jonathan P. Tomes

A recent settlement in lieu of a civil money penalty underscores the importance of having business associate agreements in place with entities that perform a .. read more

On April 3rd, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach notification, business associate, compliance, data breach, HIPAA, HIPAA compliance, HITECH, Jonathan P. Tomes, OCR investigation, Office for Civil Rights, Privacy Rule, risk analysis, Security Rule

California Determines What Is Reasonable and Appropriate for Securing Health Information: HIPAA & HITECH Act Blog by Jonathan P. Tomes

HIPAA requires covered entities and business associates to implement reasonable and appropriate security measures in § 164.308(a)(1)(ii)(B), the risk management Administrative safeguards, but although it does .. read more

On March 10th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach, business associate, compliance, criminal HIPAA violation, data breach, EHR, emr, encryption, HHS, HIPAA, HIPAA civil money penalties, HIPAA compliance, HIPAA training, HIPAA violation, HITECH, HITECH Act, identity theft, Jonathan P. Tomes, mental and behavioral health, Notice of Privacy Practices, OCR, OCR investigation, PHI, privacy, Privacy Rule, reasonable and appropriate, risk analysis, Security Rule

Latest HIPAA Settlement—Federal Trade Commission Loses Health Data Security Case: HIPAA & HITECH Act Blog by Jonathan P. Tomes

Although the Office for Civil Rights (“OCR”) of the Department of Health and Human Services (“DHHS”) is the primary agency enforcing HIPAA, the Federal Trade .. read more

On December 4th, 2015, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: data breach, Federal Trade Commission, FTC, health data security, HHS, HIPAA, Jonathan P. Tomes, OCR, risk assessment, security incident

Latest HIPAA Settlement—a Lesson Still Not Learned: HIPAA & HITECH Act Blog by Jonathan P. Tomes

Although most civil money penalties (“CMPs”) to date have involved risk analysis—that is, failure to do one, failure to do a complete one, or failure .. read more

On September 2nd, 2015, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: Alice M. McCart, breach, compliance, data breach, encryption, EPHI, HHS, HIPAA, HIPAA civil money penalties, HIPAA compliance, HIPAA policies, HIPAA training, HIPAA violation, HITECH, Jonathan P. Tomes, OCR, OCR investigation, Office for Civil Rights, PHI, risk analysis, Security Rule

The Bigger You Are, the Harder You’re Hacked: HIPAA & HITECH Act Blog by Jonathan P. Tomes

Anthem, previously known as WellPoint, Inc., the nation’s second-largest health insurance company, recently suffered a sophisticated external cyberattack. Reportedly, 80 million of Anthem’s insureds had .. read more

On February 18th, 2015, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach, compliance, data breach, EHR, hacked, HIPAA compliance, HIPAA policies, HIPAA violation, Jonathan P. Tomes

Hackers Gain Access to 4.5 Million Patients’ Data at Community Health Systems: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Attorney/Consultant Alice M. McCart

According to several national news sources, such as Fox4 News Kansas City, CNNMoney, Reuters, the Wall Street Journal, USA Today, and the Chicago Tribune, Community .. read more

On August 18th, 2014, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: Alice M. McCart, breach, compliance, criminal HIPAA violation, data breach, Hands-on HIPAA Workshop, HIPAA, HIPAA compliance, HIPAA violation, identity theft, Jonathan P. Tomes, risk analysis

New $4.8 Million OCR Settlement for HIPAA Violations: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Attorney and EMR Legal Consultant Alice M. McCart

According to a press release issued May 7, 2014, by the Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”), “Two health .. read more

On May 7th, 2014, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: Alice M. McCart, data breach, EPHI, HHS, HIPAA, HIPAA compliance, HIPAA policies, HIPAA training, HIPAA violation, Jonathan P. Tomes, OCR, OCR investigation, Office for Civil Rights, PHI, privacy, risk analysis, Security Rule

Possible Defenses to an OCR Investigation into an Alleged HIPAA Violation Now on Premium Member Section: HIPAA & HITECH Act Blog by Jonathan P. Tomes

In my How to Handle HIPAA and HITECH Act Breaches, Complaints, and Investigations: Everything You Need to Know, Overland Park, KS: Veterans Press (2011), with .. read more

On March 31st, 2014, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach, compliance, criminal HIPAA violation, data breach, HIPAA, HIPAA compliance, HIPAA violation, HITECH, Jonathan P. Tomes, OCR, OCR investigation, Office for Civil Rights, Omnibus Rule, PHI, privacy, Privacy Rule