Related Stories

Taking Privacy to a New Level: Texas Lowers Reporting Threshold for Security Breaches - 01/02/2020

Federal requirements have not changed, but starting Jan. 1, breach notification requirements will become even more stringent for Texas physicians or medical entities. The Texas Legislature dropped the threshold for breach reporting from 500 patients to 250. House Bill 4390 also requires medical entities to report breaches to the Texas attorney general’s office within 60 days of the breach.

Laptop Encryption Helps You Stay HIPAA Compliant - 12/19/2019

If you or your practice store financial or patient information on laptop computers, you could face hefty fines if those devices are lost or stolen. Thankfully, one important step toward protecting patient data, and yourself, is simple thanks to widely available encryption tools.

Don’t Let it Happen to You: Practice Fined Over Social Media - 12/09/2019

As more people go online to research products and services, online reputation management has become increasingly relevant for physicians.Because of the HIPAA Privacy Rule, physicians cannot respond to online reviews in any way that reveals PHI. Even if a patient discloses their own personal information in a review, physicians cannot respond with the same level of disclosure.

Do Your Security Risk Assessment Before Dec. 31 - 11/13/2019

If you participate in the Medicare Merit-Based Incentive Payment System (MIPS), conducting or updating a risk assessment is a requirement in the Promoting Interoperability category. In order to meet the 2019 performance year requirements, you must complete your security risk assessment by Dec. 31. This is not an optional measure. Thankfully, an upgraded tool from the U.S. Department of Health and Human Services (HHS) might make the assessment easier.

20 Everyday HIPAA Tips to Help You Stay Compliant - 11/11/2019

The goal of HIPAA is to make sure the protected health information you are responsible for or come into contact with remains confidential, secure, and available when you need it. Here are basic steps every practice can take to help make this happen.

20 Everyday HIPAA Tips - 11/11/2019

 The goal of HIPAA is to make sure the protected health information you are responsible for or come into contact with remains confidential, secure, and available when you need it. Here are basic steps every practice can take to help make this happen.  

What Are HIPAA Transaction and Code Sets Standards? - 10/29/2019

Learn about the HIPAA Transactions and Code Sets Rule that standardizes electronic data interchange (EDI) transactions for submitting, processing, and paying claims. Has your practice met the required standards?

Don’t Try This at Work: Security Risk Analysis Is Not a Do-It-Yourself Project - 08/02/2019

Medicare’s Merit-Based Incentive Payment System (MIPS) requires practices to conduct a security risk analysis at least once a year. HIPAA requires at least one analysis, and annual check-ups are considered a best practice. Many physicians find out through these reports that their practices have a lot of work to do to keep patient records safe.

Your Photocopier May Be a Security Risk - 05/30/2019

Don’t let this happen to you! A health plan recently paid a huge fine after it returned leased copiers that held protected health information.

Windows XP Support Ending Soon - 05/30/2019

Are you a Microsoft Windows XP user? If so, it’s probably time to upgrade. Your PC won’t be secure after April 8, 2014

Why Strong Passwords Are Important - 05/30/2019

Passwords are an early line of defense in protecting your patient data and an easy fix to strengthening your protections.

Understanding HIPAA: Working From Home - 05/30/2019

Can an employee work from home under HIPAA? The answer is yes, as long as you implement the appropriate security to protect data accessed from the employee’s home.

Protect Your Practice’s Social Media Accounts - 05/30/2019

Social media is a terrific way to reach out and stay in contact with your patients. However, the risks created by social media cannot be ignored. Controlling access to your social media accounts is just the first step in ensuring their security.

Security Alert: Are Your Browsers Vulnerable to POODLE? - 05/30/2019

Many of us take for granted that if we’re diligent about keeping our systems current with the latest security updates, we’re protected from threats. Unfortunately, this isn’t the case.

Phishing: Popular Sport of Cyber Attackers - 05/30/2019

…And they are out to catch you. Here’s how to identify malicious emails you need to guard against.

HIPAA: Are You Prepared for a Patient Complaint? - 05/30/2019

The most common type of patient HIPAA complaint stems from interpersonal relationships and conflicts. Do you know what do if you receive a patient HIPAA complaint?

Most Physicians No Longer Creditors Under Red Flags Rule - 05/30/2019

A new law limits the definition of “creditor” under the Red Flags Rule — and now most physicians no longer fall under its requirements.

HIPAA: Are You Prepared for a Lost Laptop or Smartphone? - 05/30/2019

Even if the only work-related activity is accessing your email, you may have PHI on your phone right now. Lost and stolen devices are the No. 1 reason for patient data breaches of more than 500 records.

HIPAA: Are You Prepared for a Business Associate Breach? - 05/30/2019

Business associate breaches can be the most costly type of breach and present some of the highest risk because you don't have insight or control over the business associate's security or policies.

HIPAA Security: What Risks Are Realistic for Your Practice? - 05/30/2019

Here are some of the factors practices should consider when assessing the security of their patients’ electronic protected health information.

HIPAA Privacy and Security Audits Coming Soon - 05/30/2019

A whole new round of audits — for compliance with HIPAA privacy requirements — are set to begin in early 2013.

HIPAA Security Rule: Move It to Top of Mind - 05/30/2019

Pilot audit reports suggest a good place to start your HIPAA security compliance is with a careful reading of the HIPAA Security Rule, and training.

HIPAA Compliance Requires Continuous Monitoring - 05/30/2019

HIPAA security compliance means not only preventing compromised protected health information but also recognizing when it happens and being able to discover what went wrong.

HIPAA Best Practices for Photocopiers, Printers, and Fax Machines - 05/30/2019

Here are three best practices to consider when creating your HIPAA policy and procedures for photocopiers, printers, and fax machines.

Federal HIPAA Guide Gives Practical Advice - 05/30/2019

A revised HIPAA guide from the Office of the National Coordinator for Health Information Technology delivers practical, actionable information for small and medium-size practices. This tip looks at security documentation advice from the guide.