Blog
On May 1, 2020, the Department of Health and Human Services (HHS) published two Final Rules in the Federal Register targeted at improving interoperability and patient access to health information.
Read MoreThe HIPAA Security Rule, as well as NIST and other standards, stipulate that a risk analysis and risk management process should be ongoing, and not a once and done process.
Read MoreA late 2018 survey of College of Healthcare Information Management Executives (CHIME) members showed physical-cyber security integration to be a critical or important topic.
Read MoreWe are living in a time where sensitive information flows seamlessly through organizations and out to employees across the country and around the globe.
Read MoreOver the last decade, strategic acquirers and private equity investors have integrated thousands of HIPAA covered entities and business associates into their portfolios. Through these experiences, they have become much better educated on the regulatory and reputational risk counterparties bring as a result of a privacy or security breach.
Read MoreIf your organization accelerated the implementation of new telehealth systems to meet the demand brought on by the COVID-19 pandemic, you may find yourself regrouping now and contemplating the need to perform a detailed risk analysis of all of your telehealth assets, policies and procedures.
Read MoreIf your business serves the healthcare industry, invariably you will be entrusted to receive electronic protected health information (PHI). You’ll quickly learn that a strong HIPAA compliance and cybersecurity program is essential
Read MoreRisk response requires setting your risk threshold and understanding your risk appetite. It requires real risk analysis as a foundation. Risk response is about informed decision making
Read MoreThousands of professionals trust Clearwater to bring them the latest news and information on Compliance and Cybersecurity Risk Management.