HIPAA – Page 2 – WindowsTechs.com

The Office for Civil Rights Should Enhance Its HIPAA Audit Program to Enforce HIPAA Requirements and Improve the Protection of Electronic Protected Health Information

Posted on November 26, 2024 by Dissent

Issued on 11/21/2024 | Posted on 11/25/2024 | Report number: A-18-21-08014 To cut to the chase: What OIG Found OCR fulfilled its requirement under the HITECH Act to perform periodic HIPAA audits. However: OCR’s HIPAA audit implementation was … Continue reading The Office for Civil Rights Should Enhance Its HIPAA Audit Program to Enforce HIPAA Requirements and Improve the Protection of Electronic Protected Health Information→

The Office for Civil Rights Should Enhance Its HIPAA Audit Program to Enforce HIPAA Requirements and Improve the Protection of Electronic Protected Health Information

Posted on November 26, 2024 by Dissent

HHS Office for Civil Rights Announces the Release of the Security Risk Assessment (SRA) Tool

Posted on November 2, 2024 by Dissent

Following up on a settlement yesterday that was HHS’s first enforcement action under OCR’s Risk Analysis Initiative, HHS OCR today released a security risk assessment tool. Here is their statement about it: Today, the U.S. Department of Health a… Continue reading HHS Office for Civil Rights Announces the Release of the Security Risk Assessment (SRA) Tool→

Summit Pathology Laboratories notified 1.8 million patients of a breach. Less than 48 hours later, they were sued.

Posted on October 30, 2024 by Dissent

On October 18, Summit Pathology and Summit Pathology Laboratories (“Summit”) in Colorado notified HHS of a breach affecting 1,813,538 patients. By October 21, personal injury law firms started reporting on the breach and recruiting potentia… Continue reading Summit Pathology Laboratories notified 1.8 million patients of a breach. Less than 48 hours later, they were sued.→

How to Set Up a VoIP Call Center on Time, Under Budget

Posted on September 13, 2024 by Corry Cummings

Learn my seven-step foolproof process for setting up a VoIP call center as fast as possible without breaking the bank or settling for less. Continue reading How to Set Up a VoIP Call Center on Time, Under Budget→

Need HIPAA Compliant VoIP? Make Sure You Have a Signed BAA

Posted on August 14, 2024 by Corry Cummings

If your business or job role involves handling patient information, you likely have to meet or surpass HIPAA requirements. We’ll walk you through the process of ensuring you’re using HIPAA compliant VoIP. Continue reading Need HIPAA Compliant VoIP? Make Sure You Have a Signed BAA→

How does a pentesting engagement change under HIPAA?

Posted on July 23, 2024 by SuperDialga

I am a intermediate pentester who will soon be conducting a engagement with a hospice. This is my first engagement with a network where HIPAA is involved, and I am researching how this may affect my statement of work. My research so far ha… Continue reading How does a pentesting engagement change under HIPAA?→

HHS OCR: Covered entities affected by the Change Healthcare breach may delegate tasks of providing HIPAA breach notifications to Change Healthcare

Posted on June 1, 2024 by Dissent Doe PHD

May 31 – Today, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) published an update to the frequently asked questions (FAQs) webpage concerning the Change Healthcare cybersecurity incident. The webpage, first… Continue reading HHS OCR: Covered entities affected by the Change Healthcare breach may delegate tasks of providing HIPAA breach notifications to Change Healthcare→

United Urology Group appears to be a victim of a ransomware attack; some patient data already leaked

Posted on May 23, 2024 by Dissent Doe PHD

United Urology Group describes itself as a national network of urology specialists with corporate headquarters in Maryland. Their network includes Arizona Urology Specialists Phoenix, Arizona Urology Specialists Tucson, Chesapeake Urology, Colorado Uro… Continue reading United Urology Group appears to be a victim of a ransomware attack; some patient data already leaked→