First HIPAA Enforcement Action against a County Government: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Richard D. Dvorak
Last week, the Department of Health and Human Services (“DHHS”) announced in a press release its first HIPAA enforcement action against a county government and .. read more
HIPAA Compliant Shredding? HIPAA & HITECH Act Blog by Jonathan P. Tomes
A long-time client for whom I have performed HIPAA consulting services recently asked me whether HIPAA had any rules for HIPAA compliant shredding. Short answer: .. read more
WellPoint, Inc., Reports Breach to DHHS, Settles for $1.7 Million: HIPAA & HITECH Act Blog by Jonathan P. Tomes
WellPoint, Inc., an Indiana managed care organization, reported under the requirements of the HITECH Act Breach Notification Rule a breach of the electronic protected health .. read more
Can You Encrypt an iPad? HIPAA & HITECH Act Blog by Jonathan P. Tomes
A client recently asked me whether her organization could encrypt iPads that contained PHI. The answer is yes. Encryption, of course, is an addressable implementation .. read more
Is It a HIPAA Breach?
I thought that I would try something different for this blog post. I’m going to describe a common HIPAA potential breach and ask questions about .. read more
DHHS Guidance on Portable Devices
The single biggest category of the reports of breaches of unsecured protected health information (“PHI”) that must be reported to the Department of Health and .. read more
Another $1.5 Million HIPAA Hit!
The Massachusetts Eye and Ear Infirmary (“MEEI”) and Massachusetts Eye and Ear Associates, Inc. (“MEEA”) (hereinafter collectively referred to as “MEEI”), each of which is .. read more
