It may not come as a surprise that Congressman Tom Price, MD (R-GA), a vocal critic of the Affordable Care Act who introduced legislation to replace it last spring, was
Continue Reading Foreshadowing HIPAA Under the New Administration: Will Transparency Trump Privacy?
Small HIPAA Breaches, Big HIPAA Headaches
What you might have thought was not a big breach (or a big deal in terms of HIPAA compliance), might end up being a big headache for covered entities and
Continue Reading Small HIPAA Breaches, Big HIPAA Headaches
Nine Tips for Avoiding HIPAA Breaches When Responding to Widespread Healthcare Emergencies
The aftermath of the Orlando nightclub tragedy has led to much discussion about ways that healthcare providers can and should deal with compliance with health information privacy requirements in the
Continue Reading Nine Tips for Avoiding HIPAA Breaches When Responding to Widespread Healthcare Emergencies
“I Want My PHI”, Part 2 – OCR Audits Will Focus on Individual Access Rights
We blogged on this back in early May, but compliance with individuals’ rights to access their PHI under HIPAA is even more critical now that OCR has announced that its
Continue Reading “I Want My PHI”, Part 2 – OCR Audits Will Focus on Individual Access Rights
A Checklist to Get Ready for the HIPAA Audits (Part 2)
Jessica Forbes Olson and T.J. Lang write:
In Part 1, we noted that on March 21, 2016, the Office of Civil Rights (“OCR”) announced it will launch a second
Continue Reading A Checklist to Get Ready for the HIPAA Audits (Part 2)
HIPAA Audits: Ready or Not Here They Come! (Part 1)
Jessica Forbes Olson and T.J. Lang write:
On March 21, 2016, the Office of Civil Rights (“OCR”) announced it
Continue Reading HIPAA Audits: Ready or Not Here They Come! (Part 1)
There’s An App For That Health Information – But is it HIPAA-Covered?
“Maybe” is the take-away from recent guidance posted on OCR’s mHealth Developer Portal, making me wonder whether the typical health app user will know when her health information is
Continue Reading There’s An App For That Health Information – But is it HIPAA-Covered?
Death and HIPAA Privacy Rights: What Would Justice Scalia Have Said?
Emailing PHI? NIST Seeks Comments on Trustworthy Email by November 30, 2015
When and how should you email PHI, if at all? The Office for Civil Rights (OCR) offers guidance as to the permissibility of sending PHI via email in this “Frequently
Continue Reading Emailing PHI? NIST Seeks Comments on Trustworthy Email by November 30, 2015
5 Practical Steps for Business Associate Compliance
Congratulations! You have a HIPAA-compliant business associate (or subcontractor) agreement in place – now what? How can you implement the agreement without becoming a HIPAA guru?
There are many resources
Continue Reading 5 Practical Steps for Business Associate Compliance