Call Us! (800)704-3394 / Contact Us /


risky business

HIPAA Risk Analysis Tip – New HHS Risk Assessment Tool – Much Ado About Nothing

This entry is part 47 of 47 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – New HHS Risk Assessment Tool – Much Ado About Nothing When I first heard the news… GREAT! … I was genuinely excited when I heard the HHS finally published the Security Risk Assessment tool on which … Continue reading

1 Comment Continue Reading →

New Study Estimates Data breaches Cost the Healthcare Industry $5.6 billion Annually

This entry is part 46 of 47 in the series HIPAA Security Risk Analysis Tips

New Study Estimates Data Breaches Cost  the Healthcare Industry $5.6 billion Annually A newly released study from the Ponemon Institute underscores major areas of risk for healthcare organizations when trying to safeguard protected health information and uphold requirements under HIPAA-HITECH … Continue reading

Leave a comment Continue Reading →
risky business

HIPAA Risk Analysis Tip – MU Attesters, Is this the Beginning?

This entry is part 45 of 47 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – MU Attester Allegedly Bearing False Claims. Is this the Beginning of a New Flavor of Enforcement? On January 22, 2014, the US District Court for the Eastern District of Texas handed down an indictment that is, to … Continue reading

Leave a comment Continue Reading →
risky business

HIPAA Risk Analysis Tip – FTC Exerting Data Security Authority

This entry is part 44 of 47 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – FTC Exerting Data Security Authority | LabMD Case On August 29, 2013, The Federal Trade Commission filed a complaint against medical testing laboratory LabMD, Inc. alleging that the company failed to reasonably protect the security … Continue reading

1 Comment Continue Reading →
risky business

HIPAA Risk Analysis Tip – OCR to Increase Security Rule Enforcement

This entry is part 43 of 47 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – OCR to Increase Security Rule Enforcement On July 27, 2009, HHS delegated the authority for the oversight and enforcement of the Security Rule to the Office for Civil Rights (OCR).  Previously, enforcement of the Security Rule … Continue reading

Leave a comment Continue Reading →
risky business

HIPAA Risk Analysis Tip – Just A Few Laptop Risks

This entry is part 42 of 47 in the series HIPAA Security Risk Analysis Tips

Virtually every organization on the planet has deployed mobile devices into their operational delivery models. Laptops, of course, are a commonly used device and have single-handedly accounted for some of the single biggest breaches reported to DHHS/OCR. For example, consider … Continue reading

Leave a comment Continue Reading →
risky business

HIPAA Risk Analysis Tip – Is there Risk? It Depends!

This entry is part 41 of 47 in the series HIPAA Security Risk Analysis Tips

Is there risk? Don’t answer that question too quickly.  Risk is a derived value!  You must take into account several key variables before you can judge whether or not there is risk and how much risk there may be.  As … Continue reading

Leave a comment Continue Reading →
copier_machine_hd2_548x408

HIPAA Risk Analysis Tip – You First Need to Understand Risk In order to Conduct a Risk Analysis

This entry is part 40 of 47 in the series HIPAA Security Risk Analysis Tips

The phrases “risk analysis” and “risk assessment” are becoming incredibly commonplace today.  They’re appearing in RFPs, littering the blogosphere, popping up in advertisements by newly-announced, so-called experts and being webinar-ed to death.  In reality, most people espousing these phrases don’t … Continue reading

Leave a comment Continue Reading →
copier_machine_hd2_548x408

HIPAA Risk Analysis Tip – Yes, Risk-Analyze Printers, Copiers and Scanners

This entry is part 39 of 47 in the series HIPAA Security Risk Analysis Tips

The U.S. Department of Health and Human Services (HHS) and Office for Civil Rights announced on Wednesday, August 14, 2013 that Affinity Health Plan, Inc. will settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy … Continue reading

Leave a comment Continue Reading →
auditor_294x400

HIPAA Risk Analysis Tip – Eligible Provider EHR Pre-Payment Audit Document Request

This entry is part 38 of 47 in the series HIPAA Security Risk Analysis Tips

CMS announced in January, after a critical OIG audit report, that Eligible Providers, Eligible Hospitals and Critical Access Hospitals who have purchased and implemented an electronic health record (EHR) system and attested to meaningful use of that EHR may be … Continue reading

Leave a comment Continue Reading →
Google Analytics Alternative