New HIPAA guidance released in opioid crisis

Responding to the opioid crisis, the OCR explains when and how healthcare providers can share a patient’s health information without violating HIPAA.

Survey finds 68% healthcare employees will share sensitive info

Results from a recent survey reveal that 68% of healthcare employees occasionally share confidential or regulated data.

HIPAA settlement proves value of audit controls

Having policies and procedures in place is good, as long as you have audit controls to ensure they’re implemented, unlike this Florida healthcare system.

Latest HIPAA settlement proves why managing security risk is critical

St. Joseph Health will pay $2.14 million for HIPAA violations, serving as an unfortunate example of why managing security risk is critical.

OCR releases guidance on Cloud Computing and HIPAA

The OCR released a guidance on October 6 that attempts to clear things up regarding cloud service providers and HIPAA.

Latest HIPAA settlement shows importance of up-to-date BA agreements

On Sept. 23, 2016, the OCR announced its second HIPAA enforcement action against a business associate to the tune of $400,000. The hospital had previously entered into a settlement of $150,000 for its part in the breach.

Join Oct. 12 webcast: BAs, HIPAA Risk Management

More and more, HIPAA breaches are caused by the Business Associates of HIPAA covered entities. Learn how to manage these risks in Oct. 12 webcast.

OCR is stepping up its investigations of smaller breaches

The OCR has begun an initiative to more widely investigate the root causes of smaller breaches affecting fewer than 500 individuals.

Data breach at Banner Health affects 3.7 million

News of a massive data breach at Banner Health continues to make headlines since first being announced Aug. 3.

OCR Desk Audits are beginning

This week selected covered entities began receiving notification letters for Phase Two of OCR’s HIPAA audit program which involve desk audits.