Does a State Exchange Have to Comply with HIPAA? HIPAA & HITECH Act Blog by Jonathan P. Tomes and Guest Commentator Richard D. Dvorak
Last week, NBC affiliate station WGRZ contacted EMR Legal regarding our opinion whether the New York health care exchange had committed a Health Information Portability .. read more
First HIPAA Enforcement Action against a County Government: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Richard D. Dvorak
Last week, the Department of Health and Human Services (“DHHS”) announced in a press release its first HIPAA enforcement action against a county government and .. read more
Our 2-day Complete Hands-on HIPAA Workshop Less Than 2 Months Away: HIPAA & HITECH Act Blog by Jonathan P. Tomes
If you dread trying to get your organization HIPAA compliant and want someone to just help you get it done almost all at once and .. read more
Is the “Pending Doom” of Windows XP a HIPAA Violation? HIPAA & HITECH Act Blog by Jonathan P. Tomes
Many, primarily IT vendors, have stated that the pending doom of Windows XP, in which Microsoft will no longer support it after April 8, 2014, .. read more
HIPAA Compliant Shredding? HIPAA & HITECH Act Blog by Jonathan P. Tomes
A long-time client for whom I have performed HIPAA consulting services recently asked me whether HIPAA had any rules for HIPAA compliant shredding. Short answer: .. read more
Report HIPAA Breaches Involving Fewer Than 500 Individuals by February 28! HIPAA & HITECH Act Blog by Jonathan P. Tomes
45 C.F.R. § 164.408 requires covered entities that discover a breach of unsecured protected health information (“PHI”) to notify the Secretary of Health and Human Services .. read more
New Wall of Shame Format: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Before discussing the new format, note that almost 800 covered entities are now memorialized, so to speak, on the Big Breacher website (my name for .. read more
New Confidentiality Agreement with a Custodial Service Posted in Premium Member Section: HIPAA & HITECH Act Blog by Jonathan P. Tomes
We do not believe that a HIPAA covered entity or upstream business associate should enter into a business associate agreement (“BAA”) with a custodial service .. read more
What Are HIPAA Policies Worth? HIPAA & HITECH Act Blog by Jonathan P. Tomes
Another HIPAA blogger recently posted an article titled “What’s a good set of Policies and Procedures worth?” In the article, the blogger recounted that he .. read more
Do You Have a Patient Portal for Your Practice? HIPAA & HITECH Act Blog by Jonathan P. Tomes
About the time that I signed up to go through a patient portal to set up an appointment with my bone and joint doctor about .. read more