Do You Have to Do a Risk Analysis of Paper Charts? Yes | HIPAA
Frank Ramage, who had read my July 24, 2011, blog entry, “Why Haven’t More Covered Entities Performed Risk Analysis?” asked whether HIPAA requires risk analysis .. read more
Executive Summary of HIPAA and HITECH Act Management White Paper
My seminar swings around the country demonstrate that many smaller covered entities are woefully deficient in HIPAA compliance perhaps because, until the past couple of .. read more
Who Is an “Other Individual” That Can Be Prosecuted for a HIPAA Crime?
The HITECH Act corrected what federal prosecutors had viewed as a flaw in HIPAA’s criminal provisions at 42 U.S.C. § 1320d-6, which had stated: .. read more
Fine and Corrective Action Plan | UCLA Health Services
During the first full week of July, the U.S. Department of Health and Human Services (“DHHS”) announced that the University of California at Los Angeles .. read more
DHHS Issues Draft Accounting Regulation—Another Compliance Burden for Covered Entities
The new draft regulation from DHHS spells out requirements for electronic health record systems to provide accountings of disclosures and establishes the requirement for an .. read more
Office of the Inspector General Slams HIPAA Oversight
On May 16, 2011, the Inspector General of the Department of Health and Human Services (“DHHS”) transmitted his report to the Office of Civil Rights .. read more
DHHS Is Getting Serious about Enforcing HIPAA
The Department of Health and Human Services (“DHHS”) has apparently decided to increase its enforcement budget by imposing large civil money penalties. DHHS now has .. read more
Why This Blog?
If you have not yet signed up to receive an email notification when I post something new, please do so. And please post your comments, .. read more
