Call Us Today! 1.800.704.3394|info@clearwatercompliance.com

HIPAA-HITECH

/HIPAA-HITECH

HIPAA Risk Analysis Tip – How Comprehensive Must Your HIPAA Security Risk Analysis Be?

By |April 25th, 2017|

This entry is part 52 of 52 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – How Comprehensive Must Your HIPAA Security Risk Analysis Be?

Short Answer: All information assets in all lines of business in all facilities and in all locations. 
OCR just entered into its 50th Resolution Agreement / Corrective Action Plan with CardioNet, Inc., the 39th case involving ePHI and therefore requiring a risk analysis.  […]

HIPAA Risk Analysis Tip – Does OCR really use the “Guidance on Risk Analysis Requirements under the HIPAA Security Rule”?

By |April 23rd, 2017|

This entry is part 51 of 52 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – Does OCR really use the “Guidance on Risk Analysis Requirements under the HIPAA Security Rule”?

Short Answer: YES! 
As long ago as June of 2005, the Department of Health and Human Services (HHS) began publishing a series of seven security articles providing guidance on the “Security Standards for the Protection of Electronic […]

HIPAA Risk Analysis Tip – May 3rd Webinar with Leon Rodriguez – What OCR Expects in Your HIPAA Risk Analysis

By |April 9th, 2017|

This entry is part 50 of 52 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – May 3rd Webinar with Leon Rodriguez – What OCR Expects in Your HIPAA Risk Analysis
Join former OCR Director Leon Rodriguez (9/2011-7/2014), now a Partner at Seyfarth Shaw LLP and Bob Chaput, CEO, Clearwater Compliance, on May 3rd at 12 noon Eastern Time for an interactive presentation and discussion of OCR’s emerging standard […]

Call for State Privacy Laws to Align with HIPAA

By |March 1st, 2017|

In December 2016, the National Governors Association (NGA) released a report calling for improvements in the exchange of clinical information among healthcare providers in different states. Current conflicting and restrictive state laws, in addition to market barriers, have resulted in incomplete or delayed diagnosis and/or treatment for patients. State privacy laws supersede HIPAA and can […]

HIPAA Risk Analysis Tip – OCR CAP Data: Learn Why 9 of 10 Organizations Fail

By |January 28th, 2017|

This entry is part 49 of 52 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – OCR CAP Data: Learn Why 9 of 10 Organizations Fail
There are plenty of ways to squander several million dollars, but none quite as frustrating as forking over those hefty sums to HHS’s Office for Civil Rights (OCR).  In each of these recent cases, MAPFRE Life ($2.20MM), St. Joseph’s Health ($2.1MM), Advocate […]

HIPAA Risk Analysis Tip – The Biggest Risk Management Surprises in the 2016 OCR Audit Protocol

By |April 11th, 2016|

This entry is part 48 of 52 in the series HIPAA Security Risk Analysis Tips

HIPAA Risk Analysis Tip – The Biggest Risk Management Surprises in the 2016 OCR Audit Protocol
A quick look at the “Current Protocol” reveals greater coverage of the regulations and more in-depth inquiries and documentation review, but the details provide even bigger surprises.  OCR isn’t kidding about the need for greater information security and formal risk […]

The Updated OCR HIPAA Audit Protocol Is Out and It’s a Puzzler

By |April 5th, 2016|

http://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/audit/protocol-current/index.html

The OCR has finally released a new protocol, entitled “Audit Protocol – Current” and one can’t be sure if this is indeed the promised “Phase 2” Audit Protocol, despite the mention that it has been “updated to reflect the Omnibus Final Rule.”  Honestly, if one of our customers hadn’t just received “the pre-audit screening questionnaire”, we might have thought it was just an update for which “feedback” was being requested.  […]

Folly of HIPAA certification

By |February 22nd, 2016|

Is your health care organization HIPAA certified? Before you start searching for your certification documentation, you should know that this is a trick question. […]

Have You Suffered A Data Breach? A 4 Step Assessment

By |January 6th, 2016|

A data breach in the healthcare industry isn’t just nerve-racking – it’s also expensive and can potentially shut a business down. The bad news is nearly every company will experience a data breach of some magnitude during the life of their company. This guide helps you to identify the type and severity of a data breach. […]

HIPAA Violations: More Serious Now than Ever

By |December 7th, 2015|

HIPAA violations have got more serious over recent years.  Financial costs often reach the millions, and headlines damage reputation to an almost immeasurable degree. And let’s not forget the prison sentences handed out to individuals found culpable of severe breaches of trust.  With the Office of Civil Rights (OCR) again promising to ramp up HIPAA enforcements with a fresh round of audits in 2016, we take you through a deep dive of HIPAA violations.

[…]

Show Buttons
Hide Buttons