Health Insurance Portability and Accountability Act Compliance

The Health Insurance Portability and Accountability Act is a United States federal statute enacted in 1996 to provide greater protection for individual's medical information and prescribe standards for the... more +
The Health Insurance Portability and Accountability Act is a United States federal statute enacted in 1996 to provide greater protection for individual's medical information and prescribe standards for the manner in which healthcare professionals gather, use, and maintain health information.  less -
News & Analysis as of

Free HIPAA Help

Health care providers, health plans, business associates, and other entities affected by the federal HIPAA privacy and security regulations are quickly running out of excuses for not having a robust HIPAA compliance program...more

Is Your HIPAA Compliance Program Going Out the Window with XP?

April 8, 2014 marks the end of Microsoft’s support for the Windows XP operating system, which means the end of security updates from Microsoft and the beginning of new vulnerability to hackers and other intruders into systems...more

Compliance is No Joke: OCR Releases Security Risk Assessment Tool

On March 28, 2014, the Office of Civil Rights (OCR) announced the release of an online and iPad app-based security risk assessment (SRA) tool. The tool is intended to help health care providers in small to medium sized...more

HHS's New Security Risk Tool for HIPAA Compliance

On March 28, 2014, the HHS Office of the National Coordinator for Health Information Technology (ONC), in conjunction with the HHS Office for Civil Rights (OCR), released a Security Risk Assessment tool (SRA tool) to assist...more

Can covered entities run Windows XP and remain HIPAA compliant?

Microsoft recently announced that, after April 8, 2014, it will not longer provide security updates or technical support for Windows XP. Microsoft’s statement that “businesses that are governed by regulatory obligations such...more

There’s a Code for That: Counting Down to ICD-10 and a Poem to Help You Remember!

On October 1, 2014, all HIPAA-covered persons and entities must be compliant with the International Classification of Diseases, Tenth Revision, Clinical Modification/Procedure Coding System (ICD-10-CM and ICD-10-PCS,...more

DHHS Gearing Up to Begin HIPAA Audits of Business Associates

The office of US Department of Health and Human Services Secretary Kathleen Sebelius recentlyannounced plans to perform "pre-audit" HIPAA compliance surveys of 800 Covered Entities and 400 Business Associates. Under the...more

HHS Reports First HIPAA Settlement with a County Government

According to a HHS press release issued last Friday, Skagit County, Washington, has agreed to a $215,000 settlement with the agency to resolve allegations that the county’s HIPAA compliance program was deficient. The Skagit...more

HIPAA Audits Set to Begin in 2014: Another Enforcement Mechanism for HIPAA Compliance

The Department of Health and Human Services (HHS) is expected to launch its long-awaited HIPAA audit program sometime in 2014. The audit program will be run by HHS’ Office of Civil Rights (OCR), which is likely eager to get...more

HIPAA Housekeeping - Don't Forget Your Annual Report of Small Breaches

If you are a "covered entity" under the Health Insurance Portability and Accountability Act ("HIPAA") and suffer a breach of protected health information, one of your first reactions should be to count the number of affected...more

U.S. Privacy and Data Protection: 2013 Year in Review and a Look Ahead to 2014

In Boston, we celebrated Data Privacy Day (January 28) by presenting “U.S. Privacy and Data Protection: 2013 Year In Review and a Prediction of What’s to Come in 2014” for participants in an IAPP KnowledgeNet. Our panel of...more

Be Prepared – HIPAA Audits are Coming in 2014

Later this year, the Department of Health and Human Services (“DHHS”) is expected to launch its permanent HIPAA Audit Program. The HIPAA Audit Program is authorized under Section 13411 of the HITECH Act, and is designed to...more

Privacy and Security Alert: January 9th, 2014

On December 5, 2013, the Office of Inspector General (OIG) reported on the Office for Civil Rights’ (OCR) compliance as of May 2011 with oversight and enforcement of the Security Rule and compliance with federal cybersecurity...more

Improve Compliance Of Retirement And Group Health Plans In 2014

Retirement plan fiduciaries should consider the following best practices to improve their plan’s governance in 2014: (i) if fiduciary duties have been delegated, make certain that the delegations are in writing and are being...more

It’s Not Enough to Notify: Don’t Forget the Policies, Risk Analyses, and Training

HIPAA compliance ended with a bang in 2013, with the feds issuing the first settlement involving a health provider’s failure to have breach notification policies and procedures in place. On Dec. 24, 2013, the Department of...more

HHS Gives A Thumbs Down For Stolen Thumb Drive

On December 26, 2013, the U.S. Department of Health and Human Services Office for Civil Rights (HHS) announced that it had reached an agreement with a Northeastern dermatology practice to settle potential HIPAA violations...more

The Cloud: Google Apps for Business and HIPAA Compliance

Does your company use Google Apps for Business? Are you a health care provider, health plan, or health care clearinghouse (“Covered Entity” or “Covered Entities”) subject to the Health Insurance Portability and Accountability...more

Practical Suggestions For Law Firm Compliance With HIPAA

Under the Health Insurance Privacy and Accountability Act of 1996 (“HIPAA”), health plans, health care clearinghouses, and most health care providers (collectively, “Covered Entities”) must protect the privacy and security of...more

HIPAA Compliance And September 23, 2013 — The Day The World Did NOT End

Everyone old enough to remember will recall Y2K – the year our world was supposed to end in a catastrophic transition from December 31, 1999 to January 1, 2000. Instead, since we are still here, we all recall what happened –...more

HHS Issues Guidance on Permitted Remuneration for Prescription Refill Reminders in the Absence of Patient Authorization

On September 19, the Health and Human Services Department (HHS) issued guidance on the effect of the January 25, 2013 Final Rule provision about remuneration related to prescription refill reminders and medication adherence...more

Preparing a Hospital or Health System for Sale or Partnership Transactions – Part Two

The consolidation trend in hospital and health systems continues. To address perceived inefficiencies and quality of care issues, hospitals are attempting to form larger enterprises to create scale, expand geographically,...more

HIPAA Omnibus Rule Compliance Deadline

September 23, 2013, the deadline for compliance with the new Health Insurance Portability and Accountability Act (HIPAA) regulations, is here. Although there has been much discussion about the new regulations since they were...more

The HIPAA Compliance Deadline is Less Than One Week Away. Business Associate Agreements and Other Documents Must Be Revised. Are...

On September 23, 2013, Covered Entities and Business Associates must be compliant with the final Health Insurance Portability and Accountability Act (HIPAA) Omnibus Rule (the “HIPAA Final Rule”). The HIPAA Final Rule modified...more

Hospitals And Compliance

Hospitals are being squeezed on many fronts – government reimbursement for medical services are declining, government regulatory requirements are increasing, and the prospects for improvement are dwindling. Medicare and...more

HIPAA Alert: Caution!! Deadline Is September 23, 2013 - Action Must Be Taken To Comply With New Requirements Imposed By The HIPAA...

September 23, 2013 is the effective compliance date for many changes to the HIPAA Privacy, Security, Enforcement Rules and Breach Notification Rules as required by the "HIPAA Omnibus Rule" as published in January 2013. All...more

111 Results
|
View per page
Page: of 5