Latest HIPAA Settlement 2—a Lesson Still Not Yet Learned about Risk Analysis: HIPAA & HITECH Act Blog by Jonathan P. Tomes
In its press release, the Department of Health and Human Services (“DHHS”) once again pointed out the importance of an organization-wide risk analysis. The press .. read more
Shooting, God Forbid, on the Premises of a Health Care Provider or Business Associate, Including HIPAA Aspects: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Yet another mass shooting, this one in a Social Services Agency in San Bernardino, CA, coupled with my being asked to weigh in on protecting .. read more
Latest HIPAA Settlement—Federal Trade Commission Loses Health Data Security Case: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Although the Office for Civil Rights (“OCR”) of the Department of Health and Human Services (“DHHS”) is the primary agency enforcing HIPAA, the Federal Trade .. read more
Latest HIPAA Violation Settlement–$850,000 for a Stolen Laptop: HIPAA & HITECH Act Blog by Jonathan P. Tomes
I don’t understand why, with all the high six-figure and seven-figure resolution agreements (basically, settlements), covered entities do not provide adequate security for laptops and .. read more
Data Destruction and HIPAA Competence as Related to IT Support Companies: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Michael B. O’Hara, CISSP
Michael B. O’Hara’s narrative, part 1: Recently, my company, KB Computing, LLC, lost a managed services client. The reason, as it so often is, was .. read more
Risk Analysis: The First One Is the Worst One: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Alice M. McCart, J.D.
We have many new HIPAA consulting clients at EMR Legal and many new HIPAA compliance tools customers at Veterans Press who know that they must .. read more
Latest HIPAA Settlement—a Lesson Still Not Learned: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Although most civil money penalties (“CMPs”) to date have involved risk analysis—that is, failure to do one, failure to do a complete one, or failure .. read more
More on Texting! HIPAA & HITECH Act Blog by Jonathan P. Tomes
I continue to get questions about texting under HIPAA. The most recent questions were in an email as follows: If we require our employees to .. read more
EMR Legal Remains Undefeated against OCR: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Sometimes, we just need to toot our own horn. We are pleased to note that EMR Legal remains undefeated going up against the Department of .. read more
Is That Security Incident a Reportable Breach? HIPAA & HITECH Act Blog by Jonathan P. Tomes
Several times a month, on average, I get a question from a Premium Member or others who get a free question, such as our seminar .. read more