Tag Archives: OCR Audits

Recent HIPAA Settlements Points To Unencrypted Laptop Thefts

Posted on April 15, 2014 by Frank J. Rosello

Concentra Health Services, Addison, Texas, a subsidiary of Humana and a provider of occupational medicine and other health services, has agreed to pay the Office for Civil Rights more than $1.7 million in a federal Health Insurance Portability and Accountability … Continue reading →

Posted in HIPAA Complicance | Tagged CMS, Environmental Intelligence, Health IT, Health IT Best Practices, Health IT Information Security, Health IT Policy, Health IT Services, HIPAA Compliance, HIPAA Privacy and Security Rules, OCR, OCR Audits, Patient Experience, PHI, PHI Data Security, PHI Security | Leave a comment

OCR Releases Details On Future HIPAA Audits

Posted on April 14, 2014 by Frank J. Rosello

The Department of Health and Human Services’ Office for Civil Rights will resume its HIPAA compliance audit program this fall with a limited number of narrowly focused “desk audits,” plus comprehensive on-site audits “as resources allow.” In contrast, the first, … Continue reading →

Posted in HIPAA Complicance | Tagged Environmental Intelligence, Health IT, Health IT Best Practices, Health IT Information Security, Health IT Policy, Health IT Services, HIPAA Compliance, HIPAA Privacy and Security Rules, OCR, OCR Audits, PHI, PHI Data Breaches, PHI Security | Leave a comment

OIG Report Finds OCR Security Failures

Posted on December 9, 2013 by Frank J. Rosello

It’s an ironic story. The Office for Civil Rights, the division of HHS responsible for investigating HIPAA privacy and security violations, is now facing scrutiny after its own security practices failed to meet federal requirements. Not only did OCR fail … Continue reading →

Posted in HIPAA Complicance | Tagged EHR, EHR Adoption, EHR Best Practices, EHR Consulting, EHR Implementation, Electronic Health Records, Electronic Medical Records, EMR, Environmental Intelligence, Health IT, Health IT Best Practices, Health IT Information Security, Health IT Policy, Health IT Services, HIPAA Compliance, HIPAA Privacy and Security Rules, OCR, OCR Audits, PHI, PHI Data Breaches, PHI Data Security, PHI Security | Leave a comment

OCR Director Says Patients’ Interests Define HIPAA Enforcement Priorities

Posted on October 11, 2013 by Frank J. Rosello

The timing was perfect. On September 23, the same day that the HIPAA Final Rule on Privacy & Security kicked in, Office of Civil Rights director Leon Rodriguez spoke at the HIMSS Media and Healthcare IT News Privacy and Security … Continue reading →

Posted in HIPAA Complicance | Tagged Environmental Intelligence, Health IT, Health IT Best Practices, Health IT Information Security, HIPAA Audits, HIPAA Compliance, HIPAA Omnibus Rule, HIPAA Privacy and Security Rules, OCR, OCR Audits, Patient Experience, PHI, PHI Data Security | Leave a comment

What To Expect With HIPAA Omnibus Rule Enforcement

Posted on October 8, 2013 by Frank J. Rosello

Although the long anticipated Sept. 23 enforcement date for the HIPAA Omnibus Rule has arrived, many healthcare information security experts don’t anticipate an immediate surge in crackdowns on those who are not in compliance. There is strong reason to believe … Continue reading →

Posted in HIPAA Omnibus Rule | Tagged Environmental Intelligence, Health IT, Health IT Best Practices, Health IT Information Security, HHS, HIPAA Audits, HIPAA Compliance, HIPAA Omnibus Rule, HIPAA Privacy and Security Rules, OCR, OCR Audits, PHI Data Security | Leave a comment

Best Practices On Avoiding Large OCR HIPAA Fines

Posted on May 24, 2013 by Frank J. Rosello

What determines the size of a penalty for HIPAA violations? The key factors are the lack of a timely risk assessment and the failure to address ongoing security issues, says Leon Rodriguez, director of the Department of Health and Human … Continue reading →

Posted in HIPAA Complicance | Tagged Environmental Intelligence, Health IT, Health IT Best Practices, Health IT Information Security, Health IT Tips, HIPAA Compliance, HIPAA Privacy and Security Rules, medical practice best practices, OCR, OCR Audits, PHI, PHI Data Security, PHI Security | Leave a comment

OCR Audits Find Widespread Lack Of Understanding Of New HIPAA Data And Security Rules

Posted on April 25, 2013 by Frank J. Rosello

Simply knowing all the rules could prevent many of the problems plaguing data security and privacy among healthcare providers and insurers.Nearly one-third of the 980 problems that HHS’ Office of Civil Rights uncovered during privacy and data-security audits of 115 … Continue reading →

Posted in HIPAA Complicance | Tagged Environmental Intelligence, Health IT, Health IT Information Security, Health IT Policy, Health IT Services, HIPAA Compliance, HIPAA Privacy and Security Rules, OCR, OCR Audits | Leave a comment

Best Practices For Being OCR Audit Ready

Posted on April 15, 2013 by Frank J. Rosello

Healthcare information security staffers rightly worry about OCR audits and want to prepare their facilities for an assessment. But how do you best measure the progress of your security program? Alain Bouit, director of IT security at Adventist Health, a … Continue reading →

Posted in HIPAA Complicance | Tagged Environmental Intelligence, Health IT, Health IT Best Practices, Health IT Information Security, Health IT Services, HIPAA Compliance, HIPAA Privacy and Security Rules, OCR, OCR Audits, PHI, PHI Data Security | Leave a comment

• Recent News

  • Texas Launches Certification Program To Bolster HIPAA Compliance
  • Internet Explorer Vulnerability: Steps To Take
  • Five Misconceptions About Cloud Computing
  • ONC Chief’s Perspectives On Patient Privacy and Security
  • ONC Chief DeSalvo Charts New Course

• Press Release Archives

• EI Connections Newsletter Archive

  
  

  Sign up for the
  EI Connections Newsletter

  * Email

  
  

• Categories

  • ACA
  • ACO Rule
  • ACOs
  • Cloud Computing
  • CMS
  • CMS eRx Rules
  • CMS Final Rule
  • CMS Proposed Rule
  • e-Health
  • EHR Adoption
  • EHR Data Sharing
  • EHR Implementation
  • EHR Incentives
  • EHR Information Security
  • EHR Meaningful Use
  • Electronic Health Records
  • Electronic Medical Records
  • EMR
  • Environmental Intelligence
  • Health Information Exchange
  • Health IT
  • Health IT Best Practices
  • Health IT Data Security
  • Health It Interoperability
  • Health IT Policy
  • Health IT Services
  • Healthcare
  • Healthcare Information Security
  • Healthcare Leasing
  • HHS
  • HHS Final Rule
  • HHS Initiatives
  • HIE
  • HIPAA 5010
  • HIPAA Complicance
  • HIPAA Omnibus Rule
  • HIPAA Privacy and Security Rule
  • ICD-10
  • Meaningful Use
  • medical practice best practices
  • mHealth
  • ONC
  • Patient Privacy
  • Personal Health Record
  • PHI Data Security
  • Press Releases
  • Radiology Systems
  • Telehealth
  • Telemedicine

• Tag Cloud

  CMS CMS EHR Incentives CMS Policy EHR EHR Adoption EHR Best Practices EHR Cloud Hosting EHR Consulting EHR Hosting EHR Implementation EHR Incentives EHR Study EHR Technology Enhancements EI Connections Newsletter Electronic Health Records Electronic Medical Records EMR Environmental Intelligence Healthcare Health Information Exchange Health IT Health IT Best Practices Health IT Information Security Health IT Policy Health IT Services Health IT Standards Health IT Tips HHS HIE HIE Standards HIPAA Compliance HIPAA Privacy and Security Rules HIT ICD-10 Meaningful Use medical practice best practices OCR ONC Patient Experience PHI PHI Data Breaches PHI Data Security PHI Security Stage 2 Meaningful Use Rule Stage 3 Meaningful Use