HIPAA

Massachusetts hospital to pay HIPAA fine

By

Massachusetts Eye and Ear Infirmary and Massachusetts Eye and Ear Associates have agreed to pay $1.5 million to settle potential HIPAA violations.

Selling your pain for their gain

Selling your pain for their gain

HIPAA violations are becoming more common around the nation. To find the source of the problem you have to "follow the money."

Alaska agency must pay $1.7m after 500-person breach

By

Heightened HIPAA enforcement continues, with the U.S. Health and Human Services taking its first-ever action against a state agency after a breach prompted an investigation.

Hospital agrees to pay $750,000 over data breach allegations

By

After violating state and federal laws, South Shore Hospital has agreed to pay the price.

A smarter migration: Cloud computing

A smarter migration: Cloud computing

By

The decision to move to the cloud has always been wrought with anxiety over entrusting one's data to a third-party. Learning which questions to ask of a provider can help mitigate that concern.

Health hazard: SC Magazine Roundtable

Health hazard: SC Magazine Roundtable

By

Health care traditionally, compared with other industries, has lagged in terms of cyber defense, but with attackers now specifically targeting these organizations for patient data, inaction is no longer an option.

A room of her own: Philips Electronics North America and Wisegate

A room of her own: Philips Electronics North America and Wisegate

By

A privacy officer at a global company found a way to collaborate efficiently at a top level, while ensuring the protection of company assets, reports Greg Masters.

BlueCross fine over breach related to HIPAA notification rule

By

The BlueCross BlueShield settlement with the Office for Civil Rights is a reminder for health care organizations to bolster their data security, experts said.

Preparing your organization for proactive HIPAA audits

HIPAA's new increased fines, penalties and enforcement actions have become a real business concern, say Glen Day and Reza Chapman, senior managers in the advisory services practice of Ernst & Young LLP.

Loma Linda hospital worker fired for taking home private records

By

The private medical records belonging to some 1,300 patients and/or their guarantors at Loma Linda University Medical Center in California were compromised when a former hospital employee violated policy.

Getting serious about health care security

Getting serious about health care security

Health care providers and their patients both have parts to play in the high-stakes game of protecting sensitive medical information, especially as technology becomes easier to implement and enforcement of regulations intensifies.

Taking a pulse: SC Health Care Roundtable

Taking a pulse: SC Health Care Roundtable

By

Data protection traditionally has lagged at health care organizations when compared to other industry verticals, and emerging technology like mobile devices and cloud computing doesn't make the challenge any easier.

More insiders snooping into health records, says survey

By

Breaches into protected health information (PHI) are on the rise, and staffers are responsible for more than a third of the intrusions, a new survey has found.

Computer theft impacts 400K S. Carolina patients

By

In one of the largest health care data breaches this year, a computer containing hundreds of thousands of patient records was stolen from South Carolina's Spartanburg Regional Healthcare System.

UCLA Health System fined over celebrity patient snooping

By

UCLA Health System must pay $865,500 as part of a settlement with the U.S. Department of Health and Human Services (HHS) over complaints that employees snooped on the health records of two celebrities.

Signing on the dotted line of HIPAA

Signing on the dotted line of HIPAA

Given that a misrepresentation of the facts during attestation could result in civil and criminal penalties, what does a health care executive need to feel comfortable about before signing on the dotted line?

Something borrowed: Benefits of PCI

Something borrowed: Benefits of PCI

The prescriptive nature of the Payment Card Industry Data Security Standard, often referred to as PCI, can benefit even those companies not processing credit card transactions.

Clinical mobility: cGate Health and FireHost

Clinical mobility: cGate Health and FireHost

By

Maintaining protection of clinical data and patients' personal information is the top priority for a health care provider with a focus on mobile devices, reports Greg Masters.

More than 30 hospital workers fired for snooping

By

Thirty-two employees were fired from two hospitals in Minnesota after they viewed electronic records belonging to patients who were hospitalized after overdosing at a house party, according to a report in the Minnesota Star-Tribune. The employees, who worked at Unity Hospital in Fridley and Mercy Hospital in Coon Rapids, do have access to certain records, but in this instance, had no legitimate reason to view the documents. As hospitals transition to electronic health care records, more instances of unauthorized access, such as cases last year in California, have cropped up.

Scaled down, armored up: Small and midsized business protection

By

For many small and midsize businesses, neglecting IT security is a thing of the past, reports Angela Moscaritolo.

Are you prepared for a breach?

Are you prepared for a breach?

A prudent firm should not wait until a clear and direct obligation exists before taking steps to secure its systems and processes.

The dotted lines of health care

The dotted lines of health care

Health care chief information security officers (CISOs) have to ask themselves, "What exactly are the security and privacy requirements around EHR?"

TECH Rx: Technology and health care

TECH Rx: Technology and health care

By

The move to electronic medical records presents challenges, but tech solutions offer help for health care practitioners, reports Greg Masters.

Up to code: A.I.M. Mutual Insurance Cos. and BitArmor

Up to code: A.I.M. Mutual Insurance Cos. and BitArmor

By

An insurance provider in Massachusetts had basic security measures in place, but these were not enough to be fully compliant with a strict, new state regulation, reports Greg Masters.

SIEM: Love it or leave it

SIEM: Love it or leave it

Security information and event management (SIEM) tools have frustrated many - yet they are here to stay, reports Beth Schultz.

Regulation renovation: Regulatory compliance mandates

By

The effects of last year's regulatory changes have already begun to surface, reports Angela Moscaritolo.

Rite Aid to pay $1 million fine for HIPAA violation

By

Pharmacy chain Rite Aid will pay a $1 million fine and take corrective actions to settle charges of violating the HIPAA Privacy Rule.

Health care security: feeling better yet?

Health care security: feeling better yet?

As health care entities face new compliance demands, a free framework could offer some help.

HIPAA encryption: meeting today's regulations

HIPAA encryption: meeting today's regulations

The author wades through NIST standards to help organizations select the best encryption technology to satisfy federal health care data protection mandates.

E-health records: Embracing privacy

By

There are strategies to cope with customer expectations of privacy when there are no boundaries around their data, reports Deb Radcliff.

Sign up to our newsletters

POLL