A look at the different ways in which HIPAA is enforced
Although historically they have been infrequent, the pace of settlements from attorneys general has picked up over recent years.
Health IT, device vendors called lax on security certification
Just 26 percent of business associates — as defined by HIPAA — in health IT, medical devices and outsourced services for healthcare providers and payers held a valid security certification, according to an analysis by CORL Technologies.
Data breach hits obscure BCBS business associate, exposes 3.3M records
The fairly unknown issuer of ID cards for millions of commercial health plan members reported an "unauthorized access to a server containing certain personal information."
6 critical security questions to ask your health IT service provider
In this article, I will present a series of questions that health care organizations should ask their IT service providers to address before providing such service providers with identifiable patient health information in electronic format (electronic patient health information or ePHI). 1. Do you encrypt electronic patient health information in-motion, at rest, or both? There […]