HHS Office of the Inspector General (OIG) recently published two reports that demanded the HHS Office of Civil Rights (OCR) strengthen up their oversight and enforcement of HIPAA compliance. Could this herald a new wave of audits and penalties?Read More
If DOJ, OCR, CMS, FTC and SEC fines, penalties and settlement agreements against organizations aren’t doing enough to deter corporate misconduct, the U.S. Department of Justice (DOJ) is broadening its enforcement scope and going straight for the C-suite.Read More
In this video Tony Burke, Senior Vice President of the American Hospital Association (AHA) and President of AHA Solutions talks about the growing need for information risk management solutions, and why they chose to endorse Clearwater Compliance solutions to meet that need. Learn how the AHA rigorously completed your due diligence for you!Read More
It’s not surprising that there is confusion surrounding the term, and how it differs to a HIPAA Risk Analysis or HIPAA Security Assessment. In fact, the answer you get will largely depend on who you ask. So is there a difference? We look at how these terms are used and what is generally being referred […]Read More
Throughout the past month, we’ve received several questions regarding Information Risk Management in healthcare. These questions come from both HIPAA Covered Entities as well as Business Associates. Many of these organizations are hearing different things about the upcoming OCR Audits from various sources. We at Clearwater want to be a guide to help navigate the […]Read More
HIPAA-HITECH Compliance Success Formula Just about everyone who knows me has probably heard me rail against “checklists” in the context of HIPAA-HITECH privacy and security rule compliance. Well, sort of. There are checklists, after all — they’re called the HIPAA Privacy Rule, HIPAA Security Rule and the HITECH Breach Notification Rule. This post may serve […]Read More
Lost USB Memory Drive Leads to $150,000 HIPAA Settlement for Small Dermatology Practice What Happened? On October 7th, 2011, Adult & Pediatric Dermatology, P.C. (APDerm), a Concord, Massachusetts-based private practice with six offices in Massachusetts and New Hampshire, notified the Department of Health and Human Services (HHS) of a stolen unencrypted USB memory drive containing […]Read More
Thousands of professionals trust Clearwater to bring them the latest news and information on Compliance and Cybersecurity Risk Management.