Senators Grill UHG CEO About Change Healthcare Cyberattack
At a House subcommittee hearing, UnitedHealth Group (UHG) CEO Andrew Witty gave testimony and was grilled by Senators over the…
Get The FREE
HIPAA Checklist
Discover everything you need to become HIPAA compliant
Get Free ChecklistAt a House subcommittee hearing, UnitedHealth Group (UHG) CEO Andrew Witty gave testimony and was grilled by Senators over the…
BioPlus Specialty Pharmacy Services has proposed a settlement to resolve a class action lawsuit that was filed in response to…
BakerHostetler has released the 10th edition of its Data Security Incident Response Report, which shares data from the incidents the…
Ransomware groups target the healthcare sector because a successful attack gives them access to large amounts of sensitive data that…
Are you a HIPAA Officer or do you have responsibility for compliance in your organization? Are you 100% certain that…
A federal court judge has recommended a class action lawsuit against CommonSpririt Health over its 2022 data breach should be…
Thursday, May 2, 2024, is World Password Day. Established in 2013, the event is observed on the first Thursday of…
The Cypress, CA-based revenue cycle management company, Designed Receivable Solutions (DRS), has recently confirmed the details of a data breach…
The medical device manufacturer Livanova, the Massachusetts community behavioral health center Aspire Health Alliance, and Santa Rosa Behavioral Healthcare Hospital…
Bay Oral Surgery & Implant Center (Bay Oral), a network of oral & maxillofacial dental surgery centers serving the Green…
Earlier this month, the HHS’ Centers for Medicare and Medicaid Services (CMS) announced two significant changes to how it handles…
The three pillars of HIPAA compliance are to develop, implement and continuously improve a HIPAA compliance program, a HIPAA training…
Report: Security Breaches in Healthcare (Direct Download PDF, 1.9MB, 16 pages) An unwanted record was set in 2023…
It has been 28 years since President Clinton signed the Health Insurance Portability and Accountability Act (HIPAA) into law –…
March was a particularly bad month for healthcare data breaches with 93 branches of 500 or more records reported to…
The HHS’ Office for Civil Rights has announced another financial penalty has been imposed for a violation of the HIPAA…
The Department of Health and Human Services (HHS) has written to the nation’s teaching hospitals and medical schools to clarify…
At a House subcommittee hearing, UnitedHealth Group (UHG) CEO Andrew Witty gave testimony and was grilled by Senators over the Change Healthcare ransomware attack and confirmed that one-third of Americans…
BioPlus Specialty Pharmacy Services has proposed a settlement to resolve a class action lawsuit that was filed in response to a 2021 data breach that exposed the data of up…
A federal court judge has recommended a class action lawsuit against CommonSpririt Health over its 2022 data breach should be dismissed due to the failure of the plaintiff to demonstrate…
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert following the publication of a proof of concept (PoC)…
Multiple changes to HIPAA regulations are expected in 2024.
Organizations must take care how social media is used to avoid HIPAA violations.
The seven elements of a compliance program.
First identify which standards your organization needs to comply with HIPAA compliant, then implement these.
HIPAA security training is required for all members of the workforce regardless of whether they have access to PHI or not.
Changes to HIPAA in 2024, including expected upcoming updates.
The Federal Trade Commission (FTC) issued a final rule on April 26, 2024, that updates the FTC Health Breach Notification Rule. The update includes revised definitions that encompass health apps…
The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has released its long-awaited Final Rule on reproductive healthcare privacy. The HIPAA Privacy Rule to Support Reproductive…
Senator Bill Cassidy (R-LA), ranking member of the U.S. Senate Committee on Health, Education, Labor, and Pensions (HELP), is seeking feedback on how health data privacy can be improved while…
The HHS Office of Inspector General (HHS-OIG) has issued a warning to the public about a fraud scheme that targets…
The Department of Health and Human Services (HHS) Administration for Children and Families (ACF) has put the sensitive data of…
The role of compliance officers in HHS OIG regulations is to ensure policies and procedures are in place to mitigate…
BioPlus Specialty Pharmacy Services has proposed a settlement to resolve a class action lawsuit that was filed in response to…
BakerHostetler has released the 10th edition of its Data Security Incident Response Report, which shares data from the incidents the…
A federal court judge has recommended a class action lawsuit against CommonSpririt Health over its 2022 data breach should be…
Several class action lawsuits have been filed against City of Hope National Medical Center, a National Cancer Institute (NCI)-designated cancer…
The Texas health system Ernest Health is being sued by patients who had their protected health information compromised in a…
Last month, the Spring, TX-based revenue cycle management firm MedData agreed to a $7 million settlement to resolve a class…
The Federal Trade Commission (FTC) has ordered the alcohol addiction treatment firm Monument to stop disclosing consumers’ health data to…
The Federal Trade Commission (FTC) has fined the mental health startup Cerebral $7.1 million for consumer privacy violations and deceptive…
BakerHostetler has released the 10th edition of its Data Security Incident Response Report, which shares data from the incidents the…
Ransomware groups target the healthcare sector because a successful attack gives them access to large amounts of sensitive data that…
Thursday, May 2, 2024, is World Password Day. Established in 2013, the event is observed on the first Thursday of…
The exploitation of vulnerabilities in software and operating systems is becoming far more common for initial access to networks, with…
Paubox, the market leader in HIPAA-compliant email, has added a new feature to the Paubox Email Suite that allows HIPAA-regulated entities to create secure, HIPAA-compliant online forms for collecting patient…
The Government Accountability Office (GAO) has recommended the Food and Drug Administration (FDA) update its formal medical device agreement with the Cybersecurity and Infrastructure Security Agency (CISA), as the agreement…
Google Keep is HIPAA compliant and can be used to create notes containing Protected Health Information and share them via Google Dive provided organizations subscribe to a Google Workspace plan…
Are you a HIPAA Officer or do you have responsibility for compliance in your organization? Are you 100% certain that…
The HealthSec: Cyber Security for Healthcare Summit returns for its 2nd edition in Boston, Massachusetts on June 12th – 13th!…
The National HIPAA Summit is a leading forum on healthcare EDI, privacy, cybersecurity, and HIPAA compliance. The Virtual 41st National…
Section 11(c) of the OSH Act prevents employers discriminating against employees when they exercise their rights to engage in a protected activity as defined by the Occupational Safety and Health…
Recording an injury or illness in compliance with OSHA regulations is not a violation of HIPAA because most employers do not have to comply with HIPAA; and, when they do,…
The Occupational Safety and Health Administration has published injury and illness data for 2023, which was collected under OSHA’s July 2023 new Improve Tracking of Workplace Injuries and Illnesses final rule….
On April 22, 2024, the Department of Health and Human Services’ Office of the National Coordinator for Health Information Technology…
New York Attorney General, Letitia James, has announced a settlement with New York’s largest health network, Northwell Health, to resolve…
A recent analysis of healthcare websites by Lokker found widespread use of Meta Pixel tracking code. 33% of the analyzed…
The Society of Corporate Compliance and Ethics (SCCE) has recently accredited ComplianceJunction’s ‘HIPAA Training for Organizations’ training course. The SCCE is…
Yes, HIPAA training is mandated by the Health Insurance Portability and Accountability Act (HIPAA) and is a federal requirement for…
The duration of HIPAA training varies depending on the specific needs and roles of the individuals being trained, but for…
HIPAA training is good for one year because HIPAA training should be completed annually to ensure best practice compliance with…
March was a particularly bad month for healthcare data breaches with 93 branches of 500 or more records reported to the Department of Health and Human Services (HHS) Office for…
The Swiss pharmaceutical firm, Octapharma Plasma, is dealing with a cyberattack that has affected systems at 190 plasma donation centers in 35 U.S. states. Those centers have been temporarily closed…
The Federal Trade Commission (FTC) has ordered the alcohol addiction treatment firm Monument to stop disclosing consumers’ health data to third parties for advertising purposes without obtaining affirmative consent. A…
Is Your Organization HIPAA Compliant?
Find Out With Our Free HIPAA Compliance Checklist
Get Free Checklist