Tag: ePHI
-
What’s the Biggest Threat to Your Medical Practice? Your Staff!
Many of us are aware of recent attacks impacting health care entities large and small. As ransomware and other cybersecurity-related crimes are being reported daily, there is a tremendous focus on the “dark web” and how to decrease the likelihood your entity will be impacted by hackers. But as we put systems in place to…
-
HIPAA Guidance for Mass Shootings and Other Tragic and Emergency Situations
In the aftermath of one of the deadliest school shootings in U.S. history, many health care organizations are revisiting their HIPAA policies and procedures to determine exactly what information they are allowed to share and to whom they may share information. FAMILY AND FRIENDS A health care entity may share a patient’s location, general condition…
-
A HIPAA Contingency Plan: Yes, It’s Boring. Yes, You Must Do It.
When was the last time you reviewed your entity’s Contingency Plan? If it has been awhile, or never, you need to get to work. In light of recent natural disasters and ransomware attacks, the necessity of thorough and documented contingency planning, to include backup and disaster recovery, has become a focus for health care entities.…
-
A Risk Analysis Is Your Entity’s Annual HIPAA Checkup
The Health Insurance Portability and Accountability Act (HIPAA) requires all covered entities to conduct an accurate and thorough assessment of potential risks and vulnerabilities to the confidentiality, availability and integrity of electronic protected health information (ePHI). This process must be documented as a Risk Analysis. Covered entities must develop a Risk Analysis at their inception…