Email Alerts
-
Consider identity theft when planning HIPAA breach prevention
A reader shares an example of healthcare fraud and explains why ID theft must be considered as part of a HIPAA breach prevention plan. Feature
-
Mobile device encryption: Balancing data protection and performance
Organizations are trying to find a balance between convenience and security as they implement mobile device encryption to protect data. Feature
-
Offsite data centers key part of effective disaster recovery plans
The time to start disaster recovery planning is long before the disaster strikes. Feature
-
Hurricane Sandy highlights need for disaster recovery planning
Hurricane Sandy provided the latest reminder that health care providers cannot overlook disaster recovery planning. Feature
-
CIO John Halamka answers reader questions on writing BYOD policy
SearchHealthIT's virtual seminar inspired viewer queries about their own thorny BYOD policy issues in health care. Feature
-
How to create a data breach response plan: Lahey Clinic expert Q&A
This Q&A covers how to create an effective data breach response plan -- follow HIPAA-compliant risk assessment policy to better protect key information. Feature
-
Guide to health care compliance resources, agencies
guide
-
Security School: Data protection strategies for health care
This Security School provides health IT professionals with data protection strategies that will cover an organization's entire infrastructure. Feature
-
Lack of EHR use may hasten malpractice lawsuits
Electronic health records can complicate malpractice law, but one reader suggests that, over time, a lack of EHR use may put health care providers in an even worse place. Feedback
-
FAQ: What is health data archiving?
Data archiving lets health care providers store patient records for years, as state and federal laws require. This FAQ addresses types of storage, outsourcing and other concerns. FAQ
- See more Essential Knowledge on Electronic health records privacy compliance
-
Obsolete technology hits efficiency, raises costs
Using outdated technology like pagers and faxes makes doctors inefficient and costs healthcare billions, a new study finds. News | 06 May 2013
-
HIPAA regulations to bring compliance challenges for providers, BAs
Updates to HIPAA's regulations could bring new compliance challenges to providers, sometimes without real benefits to patients. News | 24 Apr 2013
-
What healthcare CIOs need to know from Verizon data breach report
Verizon's report on data breaches covers all industries, but says healthcare's focus should be on laptops, thumb drives, credit card data. News | 22 Apr 2013
-
HIPAA data breach prevention tips for health care IT leaders
Speakers from recent health IT privacy and security conferences offer strategies to batten down network hatches and prevent a HIPAA data breach. News | 11 Apr 2013
-
Obama cybersecurity executive order may have healthcare implications
President Obama's cybersecurity executive order hasn't yet included healthcare. If it does, watch for compliance mandates, grant funds. News | 09 Apr 2013
-
OCR officials say HIPAA audits are learning moments, not punishment
Few providers relish going through a HIPAA audit. But representatives of the Office for Civil Rights say there isn't much to worry about. News | 06 Mar 2013
-
Data breach reporting regulations miss importance of small spills
Data breach reporting rules require practices to alert patients and regulators to breaches of 500 or more records. But what about smaller breaches? News | 06 Feb 2013
-
New breach notification rules demand documentation
Changes to the breach notification rule in the HIPAA omnibus set a high bar. Covered entities with inadequate records could face enforcement actions. News | 23 Jan 2013
-
Security pros have mixed reactions to updated HIPAA regulations
The newly updated HIPAA regulations bring certainty to many areas of privacy and security, but could make life hard for compliance officers. News | 23 Jan 2013
-
Ten more grains of wisdom from the final HIPAA omnibus rule
While covered entities and business associates must comply with all the HIPAA omnibus rule's 563 pages, here's our news, notes and high points. News | 18 Jan 2013
- See more News on Electronic health records privacy compliance
-
Patient-facing information systems raise HIPAA concerns
Patient-facing portals are becoming tools for engagement. But providers must consider HIPAA regulations before implementing such information systems. Tip
-
SharePoint in healthcare settings can boost employee policy training
SharePoint in healthcare has myriad uses: training employees, distributing compliance policy updates and more. Here's how to get the most ROI. Tip
-
Prioritizing tasks at the top of risk assessment best practices
There are many potential threats to health data security. The best practices for a risk assessment include how to prioritize those threats. Tip
-
Tips for healthcare data breach prevention from Verizon research
Verizon researchers share tips for sharpening risk assessments to prevent healthcare data breaches. The focus is on devices and business associates. News
-
Q&A: Invest smart in health information security at your facility
Trying to decide how to use limited capital to upgrade the security of your organization's health information? Start with a HIPAA risk assessment. Tip
-
New patient engagement strategies needed to capitalize on opportunity
Many factors are driving an increased focus on strategies to engage patients. New thinking is needed to make the most of these opportunities. Tip
-
Beyond HIPAA: Next-generation patient data security threats
We don't mean to scare you, but with new patient data security threats, HIPAA compliance is the least of the health care CIO's worries. Tip
-
For the best data breach response, name a crisis manager now
When a healthcare data breach happens, a crisis manager needs to be the point person to maximize HIPAA compliance and minimize the damage. Tip
-
Building HIPAA compliance, patient privacy investment business cases
Selling senior leadership on HIPAA compliance and patient privacy investments is difficult; here are tips to help outline the business case. Tip
-
HIPAA omnibus rule: Compliance tips for provider preparedness
Attorney and former HHS Office of Civil Rights authority dissects the HIPAA omnibus rule for compliance strategies. News
- See more Tips on Electronic health records privacy compliance
-
HCCA (Health Care Compliance Association)
The Health Care Compliance Association (HCCA) is a nonprofit, individual membership organization that aims to help health care professionals with ethics and compliance. Definition
-
Office for Civil Rights (OCR)
The Office for Civil Rights (OCR) is an organization within the U.S. Department of Health & Human Services (HHS), Definition
-
personal health information (PHI)
Personal health information (PHI), also referred to as protected health information, generally refers to demographic information, medical history, test and laboratory results, insurance information and other data that is collected by a health care pr... Definition
-
WMTS (wireless medical telemetry service)
WMTS (wireless medical telemetry services) is the remote monitoring of a patient's physiological parameters, such as pulse and respiration rates, with radio technology. Definition
-
HIPAA omnibus rule takes center stage at patient privacy conference
PHI Protection Network's first Boston forum throws the spotlight on HIPAA omnibus rule compliance, data breach prevention and patient privacy. Podcast
-
White hat hacker: Health care IT security tech easy, policy hard
An exclusive interview with white hat hacker Ralph Echemendia offers health care CIOs tips on how to shore up health care IT security. Podcast
-
Report shows small group practices need to secure more than HIPAA data
Verizon breakdown of health care data breaches show organized hackers preying on doctor's offices, mining patient financial data. Podcast
-
Developing a data encryption strategy for health care
There are many options for the use of data encryption in health care. Developing an encryption strategy is key to protecting personal health information. Video
-
Improving security in health care with identity and access management
As health care records move from paper to electronic, the rules for identity and access management must change. This podcast explains the basics of IAM in health care. Podcast
-
Patient-facing information systems raise HIPAA concerns
Patient-facing portals are becoming tools for engagement. But providers must consider HIPAA regulations before implementing such information systems. Tip
-
Obsolete technology hits efficiency, raises costs
Using outdated technology like pagers and faxes makes doctors inefficient and costs healthcare billions, a new study finds. News
-
SharePoint in healthcare settings can boost employee policy training
SharePoint in healthcare has myriad uses: training employees, distributing compliance policy updates and more. Here's how to get the most ROI. Tip
-
HIPAA regulations to bring compliance challenges for providers, BAs
Updates to HIPAA's regulations could bring new compliance challenges to providers, sometimes without real benefits to patients. News
-
Prioritizing tasks at the top of risk assessment best practices
There are many potential threats to health data security. The best practices for a risk assessment include how to prioritize those threats. Tip
-
Tips for healthcare data breach prevention from Verizon research
Verizon researchers share tips for sharpening risk assessments to prevent healthcare data breaches. The focus is on devices and business associates. News
-
What healthcare CIOs need to know from Verizon data breach report
Verizon's report on data breaches covers all industries, but says healthcare's focus should be on laptops, thumb drives, credit card data. News
-
Consider identity theft when planning HIPAA breach prevention
A reader shares an example of healthcare fraud and explains why ID theft must be considered as part of a HIPAA breach prevention plan. Feature
-
Q&A: Invest smart in health information security at your facility
Trying to decide how to use limited capital to upgrade the security of your organization's health information? Start with a HIPAA risk assessment. Tip
-
New patient engagement strategies needed to capitalize on opportunity
Many factors are driving an increased focus on strategies to engage patients. New thinking is needed to make the most of these opportunities. Tip
- See more All on Electronic health records privacy compliance
About Electronic health records privacy compliance
Electronic health records privacy compliance is a top priority. Find out the rules, requirements and regulations for health records, medical records, electronic health records as specified by ARRA, HITECH, CCHIT, Joint Commission, and how to implement compliance and governance programs for managing electronic health systems.