HIPAA compliance Archives - Page 4 of 19

Back to School: Time for HIPAA Training for Your Workforce: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Alice M. McCart

It’s back-to-school time here in America, so it’s time to think about learning what we need to know and, by expansion, training our people in .. read more

On August 26th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, compliance, criminal conviction, criminal HIPAA violation, HIPAA civil money penalties, HIPAA compliance, HIPAA policies, HIPAA training, HIPAA violation, HITECH Act, Jonathan P. Tomes, PHI, risk analysis

Securing EHRs on Mobile Devices—New NIST Guidance: HIPAA & HITECH Act Blog by Jonathan P. Tomes

The single biggest category of DHHS civil money penalties involves loss or theft of EHRs on mobile devices. The only guidance in the Security Rule .. read more

On August 19th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, breach, breach notification, compliance, criminal conviction, criminal HIPAA violation, EHR, EHRs on Mobile Devices, emr, encryption, EPHI, HIPAA, HIPAA civil money penalties, HIPAA compliance, HIPAA policies, HIPAA training, HITECH, HITECH Act, Jonathan P. Tomes, NIST, PHI, risk analysis, Security Rule

Must You Audit Your Business Associates for HIPAA Compliance? HIPAA & HITECH Act Blog by Jonathan P. Tomes

Now that the HITECH Act and the Omnibus Rule have made covered entities potentially liable for breaches by their business associate, see Compliance Hit: Expanded .. read more

On August 12th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, audit, audit your business associates, breach, breach notification, business associate, cloud, compliance, data breach, EHR, emr, HHS, HHS audit, HIPAA, HIPAA compliance, HIPAA policies, HIPAA training, HIPAA violation, HITECH, HITECH Act, Jonathan P. Tomes, Omnibus Rule, PHI, Privacy Rule, risk analysis, Security Rule

A Different Type of HIPAA Risk Analysis: HIPAA & HITECH Act Blog by Jonathan P. Tomes

Long-time readers of my blog are probably sick of my preaching the importance of a HIPAA risk analysis in HIPAA compliance. And I’m not going .. read more

On July 29th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, business associate, compliance, EPHI, HHS, HIPAA, HIPAA civil money penalties, HIPAA compliance, HIPAA risk analysis, Jonathan P. Tomes, risk analysis

OCR Encourages Covered Entities to Perform a Gap Analysis: HIPAA & HITECH Act Blog by Jonathan P. Tomes

We at EMR Legal and Veterans Press have been encouraging our clients and customers to perform a gap analysis since shortly after HIPAA became law .. read more

On July 22nd, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, audit, business associate, compliance, EHR, emr, EPHI, gap analysis, HHS, HIPAA, HIPAA compliance, HIPAA policies, HITECH Act, Jonathan P. Tomes, Notice of Privacy Practices, OCR, Office for Civil Rights, PHI, risk analysis, Security Rule

DHHS Issues New Guidance on HIPAA and Individual Authorization of Uses and Disclosures of PHI for Research: HIPAA & HITECH Act Blog by Jonathan P. Tomes

The U.S. Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”) has issued new guidance for HIPAA-covered entities to streamline HIPAA authorizations .. read more

On July 15th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, authorization, compliance, disclosures, EHR, EPHI, HHS, HIPAA, HIPAA compliance, HIPAA policies, HIPAA right of access, Jonathan P. Tomes, OCR, Office for Civil Rights, PHI, PHI in research, research, uses for research

DHHS Issues Reminder to Address Physical Security, Particularly Workstation Security: HIPAA & HITECH Act Blog by Jonathan P. Tomes

In May 2018, the U.S. Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”) issued its Cybersecurity Newsletter, “Workstation Security: Don’t Forget .. read more

On July 8th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, compliance, encryption, EPHI, HHS, HIPAA, HIPAA compliance, HIPAA policies, HIPAA training, HIPAA violation, HITECH, HITECH Act, Jonathan P. Tomes, OCR, Office for Civil Rights, PHI, physical security, risk analysis, Security Rule, workstation security

Biggest HIPAA Civil Money Penalty Yet—How Does $5.5 Million Sound? HIPAA & HITECH Act Blog by Jonathan P. Tomes

Memorial Healthcare System (“MHS”) settled with the U.S. Department of Health and Human Services (“DHHS”) for $5.5 million for potential violations of the Health Insurance .. read more

Mental Health and Substance Abuse PHI Reporting under HIPAA: HIPAA & HITECH Act Blog by Jonathan P. Tomes with guest commentator Alice M. McCart, J.D.

Trying to figure out what HIPAA and the HITECH Act require in the way of disclosing protected health information (“PHI”) under various circumstances in general .. read more

On June 11th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Alice M. McCart, compliance, disclosure to prevent harm, HHS, HIPAA, HIPAA compliance, HIPAA policies, HIPAA training, HIPAA violation, HITECH, HITECH Act, Jonathan P. Tomes, mental and behavioral health, mental health, PHI, risk analysis, substance abuse

A Court Order Isn’t Necessarily a Court Order. What is necessary and sufficient? HIPAA &HITECH Act Blog by Jonathan P. Tomes

HIPAA is hard to understand, even for lawyers. One of the hardest HIPAA concepts to understand and apply is the difference between necessary and sufficient .. read more

On February 7th, 2018, posted in: HIPAA Compliance Blog by Alice Tags: Hands-on HIPAA Workshop, HIPAA, HIPAA compliance, HIPAA violation, HITECH, Jonathan P. Tomes, necessary and sufficient, PHI, Privacy Rule

HIPAA compliance Archives - Page 4 of 19 - Veterans Press, Inc.