Call us at: 877-275-4545
Here is a list of common HIPAA violations that we find while performing a HIPAA Risk Assessment: Using Dropbox to store PHI Everyone loves Dropbox! Dropbox is simple, easy to use and convenient. It makes backing up and sharing data very easy. Unfortunately Dropbox is NOT HIPAA compliant. So use Dropbox for personal use but...
[divider]
There is an article over at HealthIT Security that discusses the new Department of Health and Human Services – HHS security risk assessment tool. The article interviews Alisa Chestler a shareholder in the Washington, D.C. office of Baker Donelson. Alisa shares many of the same thoughts I had when I reviewed the tool for the...
Have you ever received a letter from the Internal Revenue Service (IRS)? The letter might be due to a discrepancy on your tax return, a notice of interest due or that your tax return is being audited. Remember the fear that overwhelms you just seeing the letter from the IRS. Even if you have done...
If anyone doubts that Meaningful Use (MU) audits are occurring, I would like a chance to change their mind. Yesterday 2 potential new clients contacted us with similar stories. Both had received letters from the Centers for Medicare & Medicaid Services (CMS) letting them know that they have been audited for Meaningful Use. One client...
Susan McAndrew, OCR deputy director for health information privacy, said in an interview with Information Security Media Group that the Office of Civil Rights (OCR) will resume its HIPAA compliance audit program. The audit program should resume in the coming months. Hopefully in coming months you’ll see actual activity that will start up on the...
We have been writing about the permanent HIPAA audit program that will be put in place in 2014. Details of the program are starting to be released. The full text can be access by going to: Agency Information Collection Activities; Proposed Collection; Public Comment Request Here are some of the highlights: Number of Organizations A...
As we previously mentioned, we were busy in December, 2013 with practices rushing to get their Meaningful Use (MU) Risk Assessments completed by 12/31/2013. So here we are in 2014 and organizations need to be concerned about attesting for MU again. We are hoping to shed some more light onto MU Risk Assessments, ongoing MU...
HealthITSecurity.com has a very good article called What the HIPAA Omnibus Rule meant for healthcare in 2013 They give a good overview of the HIPAA Omnibus Rule and its impact. What I found even more interesting is some of the comments by OCR regarding their plans for 2014. It gives clear insight into the permanent...
This post is updated with an official company statement below Adult & Pediatric Dermatology of Concord, MA has agreed to pay a $150,000 HIPAA fine as a result of a HHS Office of Civil Rights (OCR) investigation. The 12 physician practice was investigated by OCR after they reported a loss of an unencrypted thumb drive...
© 2026 · HIPAA Secure Now!
Recent Comments