25% off all training courses Offer ends July 30, 2026
View HIPAA Courses
25% off all training courses
View HIPAA Courses
Offer ends July 30, 2026

The HIPAA Journal is the leading provider of HIPAA training, news, regulatory updates, and independent compliance advice.

Steve Alder

Steve Alder is the editor-in-chief of The HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered in The HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has 10 years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics. Steve shapes the editorial policy of The HIPAA Journal, ensuring its comprehensive coverage of critical topics. Steve Alder is considered an authority in the healthcare industry on HIPAA. The HIPAA Journal has evolved into the leading independent authority on HIPAA under Steve’s editorial leadership. Steve manages a team of writers and is responsible for the factual and legal accuracy of all content published on The HIPAA Journal. Steve holds a Bachelor’s of Science degree from the University of Liverpool. You can connect with Steve via LinkedIn or email via stevealder(at)hipaajournal.com

How Safe are your Medical Records?

We would like to believe that our confidential medical records are kept under digital lock and key; however this is not always the case. The safety of patient data depends on the diligence of health care organizations and the cyber-security measures they implemented. Simple oversights and errors can result in private and confidential patient medical data being made available in the public domain, as recently happened for 7,000 patients in a diagnostic clinical laboratory in Huntsville, Al. The company, Diatherix Laboratories, was forced to notify its 7,016 patients that a HIPAA breach led to their data being made available in the public domain for a period of three years, and during that time outsiders had accessed that information. The problem occurred because the patient data was stored on a third party server and which had not been made secure. The breach occurred in September of 2011, yet the issue was not noticed until July 2014. This is far from an isolated incident. A Temple University doctor’s office recently reported a laptop theft from the premises with data of 3,780...

Read More
HIPAA Health Plan Identifiers Delayed Until Further Notice
Nov03

HIPAA Health Plan Identifiers Delayed Until Further Notice

The CMS introduced the rule that a national health plan identifier must be used for transactions, yet it appears to have had second thoughts on the issue and its HPID plans have now been “delayed until further notice”. The Office of E-Health Standards and Services of the CMS previously ruled in 2012 that it would require health plans to have a numerical identifier, while other covered entities would also be required to use them and would be covered in future mandates. The Health Insurance Portability and Accountability Act of 1996 uses HPIDs along with other identifiers to simplify administration. HIPAA provider IDs were first introduced in 2007, although plans for the introduction of a national patient identifier have been on hold since 2000 due to privacy and security concerns. The use of health plan identification numbers has not been met with praise by all in the healthcare industry and concern has been voiced that the use of these identifiers would just add granularity; over-complicating transactions unnecessarily. The purpose of HPIDs has also been questioned, in particular...

Read More
Data Breach Report Demonstrates Why Healthcare Data Encryption is Essential
Nov01

Data Breach Report Demonstrates Why Healthcare Data Encryption is Essential

The California State Attorney General has released a damming report on the state of data security in the healthcare industry, and in doing so has highlighted an essential need for the healthcare industry to encrypt patient data across all mobile devices such as laptops and Smartphones. 70% of data breaches which have affected the healthcare industry in California involved the loss or theft of portable hardware on which protected health information was stored. In other industries, breaches of this nature only accounted for 19 percent of reported breaches. The healthcare industry is particularly vulnerable due to the nature of the data stored and its value to thieves. The wide range of portable devices used in the healthcare industry also makes it an easy target for cyber criminals. According to the report, between 2012 and 2013 there were 25 data breaches affecting the healthcare industry which accounted for 15% of the total number of data breaches reported for the year and involved 1.5 million potentially compromised records. The retail industry was hit particularly hard with 43...

Read More
FTC  to Address Gaps in HIPAA Regulations to Better Protect Consumers
Nov01

FTC to Address Gaps in HIPAA Regulations to Better Protect Consumers

Privacy and security are two areas of grave concern in healthcare today due to the high volume of highly personal and sensitive patient data being stored and transferred. With Apps now collecting personal information directly from consumers, The Federal Trade Commission (FTC) is likely to become more involved in security and protection of data; a role usually given to the Department of Health and Human Services. The Health Insurance Portability and Accountability Act (HIPAA) covers health tech companies and health care providers that have business relationships with each other. Many companies, software developers and tech companies are not part of the health care system and are therefore not covered under the regulations. Wearables, health apps and a host of other tech collects personal information on patients and the volume of data being collected and stored has raised serious concerns about privacy and security issues. FTC commissioner Julie Brill has recently voiced her concern on the issue. She believes that appropriate security controls and privacy protection must be enforced...

Read More
High-Tech Healthcare on the Way
Oct31

High-Tech Healthcare on the Way

And You Thought We Already Lived in a High-Tech Age? Enter any modern medical facility and you will be immediately surrounded by an assortment of high-tech gadgetry designed to make our lives easier, healthier and more secure. Much of the technological wizardry would not have been conceived a decade ago and yet now we rely on it every day to care for your young, or elderly and our sick. For many people, even when they leave a medical facility, high-tech healthcare still follows them around. It has been estimated that – by 2015 – 500 million people around the world will be using Smartphone apps to monitor weight, blood pressure, cholesterol levels, heart rate and sleep quality; and some claim apps that they are even able to detect cancer. However, not everybody is so keen to adapt to healthcare by phone and, in the same way as the Government had to “incentivize” the healthcare industry to start using EHRs, patients are now being bribed to engage in remote monitoring programs which could not only save their lives – but win them a cash prize too! Not Had a Heart...

Read More
x

Is Your Organization HIPAA Compliant?

Find Out With Our Free HIPAA Compliance Checklist

Get Free Checklist