If you are a HIPAA-covered entity or business associate, you likely know that patient PHI may only be created, received, maintained, and transmitted as permitted by the HIPAA Security Rule
Continue Reading Is Your Website HIPAA-Compliant?
One of Three $3 Million Lessons: Encrypt Mobile Devices
A large New York hospital system learned this lesson the expensive way. According to a U.S. Department of Health and Human Services (HHS) press release issued earlier this week, the
Continue Reading One of Three $3 Million Lessons: Encrypt Mobile Devices
The Blindfolded Business Associate: New HHS Guidance on HIPAA and Cloud Computing
According to the latest HIPAA-related guidance (Guidance) published by the U.S. Department of Health and Human Services (HHS), a cloud service provider (CSP) maintaining a client’s protected health
Continue Reading The Blindfolded Business Associate: New HHS Guidance on HIPAA and Cloud Computing
Lack of Preparedness and Government Access Top Data Security Agenda
The private sector is still not prepared – and generally lacks the knowledge – to respond effectively to a major cyber breach, according to 80 percent of respondents in a
Continue Reading Lack of Preparedness and Government Access Top Data Security Agenda
Apple, the FBI, and iPhone Encryption: A Battle of Biblical Proportions with Implications for HIPAA
Whether it was an apple or a quince, pomegranate, or some other more botanically-likely fruit growing in the Garden of Eden, God’s command in Genesis was clear: do not eat
Continue Reading Apple, the FBI, and iPhone Encryption: A Battle of Biblical Proportions with Implications for HIPAA