Category: HIPAA Consulting in Baltimore and Metro DC.

Don’t Have an Extra $2 Million Laying Around to Settle a HIPAA Fine? Then Pay Attention to Details and Encrypt Your Mobile Devices!

Don’t Have an Extra $2 Million Laying Around to Settle a HIPAA Fine? Then Pay Attention to Details and Encrypt Your Mobile Devices!

The U.S. Department of Health & Human Services Office for Civil Rights has fined two healthcare organizations for potential HIPAA violations resulting from unencrypted stolen laptops. The healthcare organizations received combined fines of nearly $2 million. That’s a fairly huge fine! The OCR is attempting to showcase the importance of mobile device security, however, many…

Healthcare: Time Is Running Out to Complete Your Meaningful Use Risk Assessment.

Healthcare: Time Is Running Out to Complete Your Meaningful Use Risk Assessment.

December 31st is fast approaching and if your healthcare organization hasn’t completed your Meaningful Use Risk Assessment for 2013 you’d better get busy.  If you miss the deadline, you may have to return a full year of EHR (Electronic Health Record) incentive payments. Your EHR or EHR components must meet the standards set by the…

Nine Policies and Procedures for Compliance with HIPAA

Nine Policies and Procedures for Compliance with HIPAA

The HIPAA Security Rule was enacted in 1996 by the U.S. Congress, designed to establish national standards to protect individuals’ electronic personal health information used and/or stored by a covered entity. The HITECH act states that all healthcare providers will be offered financial incentives for establishing meaningful use of electronic health records. While HIPAA and…

Healthcare Providers Must Educate Patients About EHRs.

Healthcare Providers Must Educate Patients About EHRs.

Healthcare providers are increasingly adopting the use of electronic health records (EHRs); however, many of them fail to explain to their patients how they work. It’s crucial for healthcare providers and hospital staff to help patients understand how EHRs work, and how they provide the access to information and security that your patients are looking…

Four IT Lessons To Be Learned From The Disastrous Launch of Healthcare.gov

Four IT Lessons To Be Learned From The Disastrous Launch of Healthcare.gov

In theory, the U.S. federal government’s Health Insurance website was designed to make things simpler for residents looking to buy health insurance. However, just 14 days after the launch of www.healthcare.gov, the online initiative was a huge disaster. The troublesome rollout of the U.S. healthcare exchange is a perfect example of outsourced IT gone awry….

BYOD and Mobile Security Practices for Healthcare Organizations

BYOD and Mobile Security Practices for Healthcare Organizations

As the BYOD (bring your own device) trend increases in the workplace, hospitals are finding it necessary to focus more on mobile security. Mobile computer devices and BYOD policies allow healthcare professionals to work from their own personal devices from wherever they are, increasing productivity and team collaboration capabilities.   However, along with the benefits of…

URGENT NOTICE For all Healthcare Entities – Windows XP and Windows Server 2003

URGENT NOTICE For all Healthcare Entities – Windows XP and Windows Server 2003

Upgrade Now From Windows XP and Windows Server 2003 Or You Won’t Be HIPAA Compliant. In less than six months Windows XP users won’t be able to get support from Microsoft; and in 2015 Microsoft Server 2003 support will be dropped as well. Hackers and cybercriminals know this is coming, and are getting ready to attack. …

Coming In 2014—The Next Round of HIPAA Audits

Coming In 2014—The Next Round of HIPAA Audits

According to Leon Rodriguez, director of the Department of Health and Human Services’ Office for Civil Rights (OCR), federal regulators will deploy a permanent HIPAA (Health Insurance Portability and Accountability Act) audit program beginning October 1, 2014. In 2012 KPMG, the contractor for the pilot program audited 115 covered entities. An analysis of those findings…

Four Million Patient Records Breached During Burglary at the Advocate Medical Group  The Penalty?  $960,000.00

Four Million Patient Records Breached During Burglary at the Advocate Medical Group The Penalty? $960,000.00

Lesson Learned — Healthcare Entities Must Perform HIPAA RISK ASSESSMENTS! Recently, a Chicago-based AMG Medical Group revealed that four million patient records were breached during a burglary at their administrative office. The Park Ridge Police Department were immediately notified after the break-in, which resulted in the theft of four computers, occurred at the administrative office…