HIPAA Medical data breaches most often caused by theft
An analysis of HHS information finds the biggest security leaks come from stolen laptops and removable memory technology. The take-home message: Keep devices locked up.By Pamela Lewis Dolan, amednews staff. Posted Sept. 3, 2010.
HIPAA Violations with Paper Records by Business Associate and Sub-Contractor
Four Massachusetts community hospitals are investigating how thousands of patient health records, some containing Social Security numbers and sensitive medical diagnoses, ended up in a pile at a public dump. The unshredded records included pathology reports with patients’ names, addresses, and results of breast, bone, and skin cancer tests, as well as the results of lab work following miscarriages. By Liz Kowalczyk Globe Staff / August 13, 2010
Healthcare Leads in Data Breaches:Transparency Needed
Of the 385 organizations hit with data breaches so far this year, 113 were in health care, according to the Identity Theft Resource Center's report for July 28. Just 39 breaches have been reported in banking and finance according to the ITRC. Experts cite a lack of compliance and improper data access by insiders as culprits.
"My Credit Card is Being Used Fradulently after Anthem Blue Cross HIPAA Data Breach"
"Three days ago, my credit card number was used fraudulently. Today I received a letter from Anthem telling me a breach had occured, leaking my social security number, name & credit card number."
No HIPAA Compliant Policies and Procedures Means "Willful Neglect"
Legal Review of New HIPAA HITECH Rules: Foley & Lardner
HHS releases proposed HITECH rule
Foley & Lardner LLP
On July 14, 2010, the Office for Civil Rights of the Department of Health and Human Services (HHS) published a Notice of Proposed Rulemaking (Proposed Rule) that proposes significant changes to the Health Insurance Portability and Accountability Act (HIPAA) Privacy, Security and Enforcement Rules.
Vendors: Can You Prove Your HIPAA HITECH Compliance?
"Vendors seeking to court healthcare clients will now need to pitch not only functionality but a compliance message as well." Report From the Trenches: Health IT Post-HITECH By Ed Moyle TechNewsWorld 07/20/10 5:00 AM PT
Top Privacy and Security Experts Agree: Business Associates Must Comply with HIPAA HITECH
"The rule makes it much clearer that the covered entities' responsibilities must go far beyond just having a business associate agreement," Rebecca Herold stresses. Instead, hospitals, clinics and others must work closely with their business partners to make sure they're carefully following the HIPAA privacy and security rules, she adds.
Signed a Business Associate Agreement?, Get Compliant, Says HHS
"For those business associates that have not already adopted HIPAA-compliant privacy and security standards for PHI, the risk of criminal and/or civil monetary penalties may spur them to increase their efforts to comply with privacy and security standards." Page 164 NPRM
HHS Expects Business Associates to be Compliant, Now!
This NPRM from HHS contains serious warnings to business associates that they expect them to be HIPAA HITECH compliant with their business associate agreements now, and if not, they should get started immediately.
Subscribe via RSSCategories
- HIPAA HITECH Act
- HIPAA Covered Entity
- HIPAA Business Associates
- Health Information Privacy
- HIPAA Compliance Online Software
- HIPAA Compliant Checklist
Recent Blog Posts
- HIPAA Medical data breaches most often caused by theft
- HIPAA Violations with Paper Records by Business Associate and Sub-Contractor
- Information Security and Privacy Compliance Work Plan by Rebecca Herold, The Privacy Professor
- Business Associates Must Comply with Ther HIPAA Contracts, Now!
- 44% of CIOs say Business Associates Not Ready for "Meaningful Use":Pricewaterhouse Coopers Study Shows
- Business Associates Liable for Breach of Their Business Associate Agreements, Effective February 17, 2010
- more from the blog
