MA AG Settles Cross-border HIPAA and Breach Notification Enforcement Suit: HIPAA & HITECH Act Blog by Jonathan P. Tomes
So only the state attorney general in the state in which you do business can file a lawsuit against you? Right? No, wrong. A Rhode .. read more
Hands-on HIPAA Compliance Workshop: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Is your organization’s HIPAA compliance lost at sea? As you may know, EMR Legal, Inc., is offering our 2-day Hands-on HIPAA Workshop October 16-17 aboard .. read more
Business Associates? How Low Can You Go? HIPAA & HITECH Act Blog by Jonathan P. Tomes
The Omnibus Rule effectively made “downstream” business associates—that is, subcontractors—into business associates and thus effectively into covered entities. They are now effectively if not by .. read more
Review: AHIMA Posts Excellent Article on Appropriate Use of Copy and Paste Functionality in EHRs: HIPAA & HITECH Act Blog by Jonathan P. Tomes
You may wonder what copying and pasting has to do with HIPAA. Actually, the copy and paste functionality is an issue that certainly does have .. read more
Next Stage of DHHS Audits Coming: HIPAA & HITECH Act Blog by Jonathan P. Tomes
The U.S. Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”) has not yet published an audit protocol for this year’s Phase .. read more
Hackers Gain Access to 4.5 Million Patients’ Data at Community Health Systems: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Attorney/Consultant Alice M. McCart
According to several national news sources, such as Fox4 News Kansas City, CNNMoney, Reuters, the Wall Street Journal, USA Today, and the Chicago Tribune, Community .. read more
What Legal Support Services Need to Know About HIPAA: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Legal support services have become an important part of the legal system. Such services include the following: service of process; obtaining, translating, copying, and assembling .. read more
ICD-10 New Compliance Date: HIPAA & HITECH Act Blog by Jonathan P. Tomes
The U.S. Department of Health and Human Services (“DHHS”) issued a rule on August 1, 2014, finalizing October 1, 2015, as the new compliance date .. read more
Are Passwords Sufficient Equivalent Alternate Measures to Encryption? HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Michael B. O’Hara
I was recently asked a question by national HIPAA expert Jon Tomes concerning whether or not medical professionals should encrypt hard drives on their laptops .. read more
You Don’t Just “Address” an Addressable Implementation Specification: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Recently, a HIPAA consultant answered a question about whether one had to implement an addressable implementation specification. His answer was basically “no.” He must have .. read more