Healthcare & HIPAA Compliance Articles

Resource Center for Healthcare & HIPAA Compliance Articles

Healthcare & HIPAA Compliance Articles

Resource Center for Healthcare & HIPAA Compliance Articles

Malware
Malware
Last Updated - June 29, 2022

As the need and dependency of people and businesses on computers, mobile gadgets, electronic data, and a variety of programs and applications consistently...

View Details »
How Encryption plays an important role in HIPAA Security
How Encryption plays an important role in HIPAA Security
Last Updated - June 06, 2022

The University of Rochester Medical Center (URMC) has paid a $3 million HIPAA penalty to the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services...

View Details »
Security Incidents and Sanction Policy
Security Incidents and Sanction Policy
Last Updated - June 02, 2022

• Forgotten to remove access of a departing employee?

• Forgotten to collect devices with potential PHI from departing employees?...

View Details »
ID Theft and ID Protection
ID Theft and ID Protection
Last Updated - May 24, 2022

On March 23, 2021, acting United States Attorney M. Rhett DeHart announced that according to the Federal Bureau of Investigation’s 2020 Internet Crime Report, South Carolinians lost more than...

View Details »
Embracing HIPAA Security at Home and at Work
Embracing HIPAA Security at Home and at Work
Last Updated - May 13, 2022

We certainly live in interesting times. I mean, my mother that is 87 years old, received a tablet for her Christmas present. My three-year-old grandson uses his mother's cell phone...

View Details »
Do you have a Business Associate Agreement with your vendors?
Do you have a Business Associate Agreement with your vendors?
Last Updated - April 26, 2022

Business Associates

In an ideal world, each healthcare provider (aka Covered Entity) has a...

View Details »
Password Management in HIPAA Compliance
Password Management in HIPAA Compliance
Last Updated - April 18, 2022

Does HIPAA mention anything about passwords?

Yes. Password and Password Management are explicitly stipulated in the following provisions:

First, under "Definitions" [45 CFR 164.304] of the "Security...

View Details »
Access Controls
Access Controls
Updated - April 07, 2022

§ 164.312(a)(1)

Allow access to ePHI only to those granted access rights. Implementation specifications under Access Control...

View Details »
What is Accounting of Disclosures?
What is Accounting of Disclosures?
Last Updated - March 28, 2022

Also known as Accounting of Disclosures of Protected Health Information, it is a mandate under 45 CFR § 164.528 of the Security and Privacy, Subpart E - Privacy of Individually Identifiable Health Information...

View Details »
CISA and AHA issue urgent warnings: CYBERTHREAT on US Healthcare Organizations
CISA and AHA issue urgent warnings: CYBERTHREAT on US Healthcare Organizations
Last Updated - March 15, 2022

With the current critical and dangerous events unfolding, there is no avoiding discussion of unsettling threats – particularly cyber threats...

View Details »
IN A GLANCE: HIPAA Security Officer, Security Incidents, and Sanction Policy
IN A GLANCE: HIPAA Security Officer, Security Incidents, and Sanction Policy
Last Updated - February 03, 2022

Q: Is a HIPAA Security Officer necessary? Can we make do without having one? A: The short answer is "No."...

View Details »
Open Notes as Mandated by the 21st Century Cures Act: A Clinician's Condensed Guide
Open Notes as Mandated by the 21st Century Cures Act: A Clinician's Condensed Guide
Last Updated - November 11, 2021

In 2016, the 21st Century Cures Act came into effect under President Obama; as of April 5th, 2021, the program rule on...

View Details »
Do Business Associates have direct liability under HIPAA?
Do Business Associates have direct liability under HIPAA?
Last Updated - November 01, 2021

The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), issued a fact sheet enumerating a list of HIPAA...

View Details »
Is Encryption Essential in HIPAA Compliance?
Is Encryption Essential in HIPAA Compliance?
Last Updated - October 08, 2021

“Encryption is a method of converting an original message of regular text into encoded text. The text is encrypted by means of an algorithm...

View Details »
HIPAA Physical Safeguards and Workstation Security
HIPAA Physical Safeguards and Workstation Security
Last Updated - August 13, 2021

Physical Safeguards (45 CFR § 164.304) refers to physical measures, policies, and procedures to protect a covered entity’s or business...

View Details »
System Patch Management Role in HIPAA Security
System Patch Management Role in HIPAA Security
Last Updated - May 27, 2021

By this time you should have a basic understanding of cybersecurity, cyber attacks, cyber tools, and malware. If you need a refresher on these...

View Details »
The Flexibility of Approach Clause on HIPAA Policies and Procedures
The Flexibility of Approach Clause on HIPAA Policies and Procedures
Last Updated - May 27, 2021

The words "policies" and "procedure(s)" are not specifically defined in HIPAA. However, in the publication...

View Details »
Know what HIPAA says: Security Officer, Security Incidents, and Sanction Policy
Know what HIPAA says: Security Officer, Security Incidents, and Sanction Policy
Last Updated - May 27, 2021

Assigning a HIPAA Security Officer is one of the mandates of HIPAA as indicated in 45 CFR § 164.308 (a) (2). It specifically...

View Details »
Aetna to pay $1 million in fines plus Corrective Action Plan for HIPAA breaches according to OCR HHS findings
Aetna to pay $1 million in fines plus Corrective Action Plan for HIPAA breaches according to OCR HHS findings
Last Updated - December 8, 2020

Aetna has entered into a resolution agreement with the Office of the Civil Rights (OCR), U.S. Department of Health and Human Services...

View Details »
  • © 2022 EPICompliance, LLC
    6817 Southpoint Pkwy, Ste 1704
    Jacksonville, FL 32216
    Email: [email protected]
    Call: 877-560-4261