How much is the cost of doing nothing when it comes to encryption of sensitive data? In the case of electronic protected health information, about $2 million.
Two companies have been hit with fines equaling a total...more
Two companies were hit with fines equaling a total of almost $2 million to settle alleged Health Insurance Portability and Accountability Act (HIPAA) violations involving stolen, unencrypted laptops, the U.S. Department of...more
The U.S. Department of Health and Human Services (HHS) announced on April 9th a “historic” release of Medicare payment data to provide consumers with “unprecedented transparency on the medical services physicians provide and...more
The U.S. Department of Health & Human Services (“HHS”) announced last week that same-sex married couples can now qualify for Medicare Part A and Part B special enrollment periods and reductions in late enrollment penalties....more
Since 2009, the HHS Office for Civil Rights (“OCR”) has posted all large data breaches – those that involve 500 or more individuals – online on its so-called “Wall of Shame.” In 2013, 160 large data breaches were reported to...more
Welcome to our series, “The 12 Days of Privacy” as we look to “gifts” that may be received this season and some of the big issues ahead ….
Day One – - HIPAA 2014 – Where will the Audit Trail Lead?
The year 2013...more
The HHS Office of Civil Rights (OCR) announced that the Health Information Technology (HIT) Policy Committee’s Privacy and Security Tiger Team will hold a virtual, public hearing on Monday, September 30 from 11:45 a.m. to...more
As we have reported in this blog, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently released final regulations containing modifications to the HIPAA Privacy, Security, Enforcement, and...more
The Department of Health and Human Services, Office for Civil Rights (OCR) has posted on its website sample business associate agreement provisions to help covered entities and business associates comply with the new business...more
Originally published in Compliance Today on December 1, 2012.
..Covered entities are now subject to privacy and security audits by OCR.
..OCR published audit protocols regarding its standards for such...more