Ransomware and HIPAA: trends and what to do

Ransomware attacks in the healthcare industry have become increasingly common in recent years, threatening patient care, disrupting daily operations, and possibly compromising protected health information (PHI). Under HIPAA rules, organizations…

Continue Reading

A Proposed HIPAA Rule Change for 2023

A proposed HIPAA Rule change for 2023 was an early Christmas gift from the Health and Human Services Department (HHS)! On December 21, 2022, HHS released a proposed rule covering…

Continue Reading

Is Zoom HIPAA Compliant?

The Health Insurance Portability and Accountability Act (HIPAA) is the federal law that required the creation of national standards to protect sensitive patient health information. And the question “Is Zoom…

Continue Reading

Critical Access Hospital Compliance Plan

Is there anything particularly special about a Critical Access Hospital Compliance Plan? Not really; the same Office of Inspector General Guidance for Hospital Compliance Plans applies to critical access hospitals…

Continue Reading

What is a Corporate Integrity Agreement?

It seems these days the Office of Inspector General (OIG) of the Health and Human Services (HHS) Department is always busy with settlements or enforcements with healthcare providers. When the…

Continue Reading

Risk Assessment for a Breach of PHI

When should you do a risk assessment for a breach of PHI? The short answer is any time you have a confirmed unauthorized disclosure of protected health information (PHI). The…

Continue Reading