OCR has been made aware of postcards being sent to health care organizations disguised as official OCR communications, claiming to be notices of a mandatory HIPAA compliance risk assessment. The postcards have a Washington, D.C. return address, and the sender uses the title “Secretary of Compliance, HIPAA Compliance Division.” The postcard is addressed to the health care organization’s HIPAA compliance officer and prompts recipients to visit a URL, call, or email to take immediate action on a HIPAA Risk Assessment. The link directs individuals to a non-governmental website marketing consulting services. The postcard below is not from HHS/OCR. HIPAA covered entities [...]
About NuLLFiXThis author has not yet filled in any details.
So far NuLLFiX has created 29 blog entries.
This past week the Certification Commission for Health Information Technology (CCHIT) announced that it will be ending its service to the health IT community. The CCHIT organization spearheaded the creation of testing and certifications for health IT professionals. The organization decided to close down their operations due to the unforeseeable timing of new legislation and requirements in the future. For further explanation, read here. CCHIT announced that all of their staff are involved in the transition and work will be done on November 14, 2014. The HIMSS Foundation will be receiving all of the remaining assets of the CCHIT.
‘We delivered CHPSE training to a staff member of CMS, who was a key member of the Privacy Office. During our interactive sessions, our attendee was fully engaged and the discussions were both interesting and revealing. She was obviously well-informed to begin with and yet several times indicated that our training information had clarified several specific points that she had often wondered about. The instructor pointed out that our materials are taken directly from the CFR and law to ensure they are both as accurate and as current as possible. To quote her, “I have found this training very helpful and [...]
OCR Issues Guidance on Covered Health Care Providers and Restrictions on Media Access to Protected Health Information about Individuals in Their Facilities May 5, 2020NuLLFiX
Today, the Office for Civil Rights (OCR) at the U.S Department of Health and Human Services (HHS) issued additional guidance reminding covered health care providers that the HIPAA Privacy Rule does not permit them to give media and film crews access to facilities where patients’ protected health information (PHI) will be accessible without the patients’ prior authorization. The guidance explains that even during the current COVID-19 public health emergency, covered health care providers are still required to obtain a valid HIPAA authorization from each patient whose PHI will be accessible to the media before the media is given access to that PHI. The [...]
HIPAA Security Compliance Officer of a City Completes Certified HIPAA Privacy Security Officer Training (CHPSE Training) to help City achieve and maintain HIPAA Compliance. A newly appointed HIPAA Security Officer working for a West Coast municipality attended one of our virtual sessions. Already a certified information security professional, the attendee explained she wanted to ensure she was properly informed and prepared to assume her new role. Our Senior Instructor spoke with her to gain insight into her experience with healthcare, compliance and security, and then began the class. Over the course of the week’s class, several discussions occurred over various points she wanted clarification on, including how HIPAA [...]
A developer organization created a “Platform-as-a-Service” offering intended to facilitate healthcare telemedicine session, data creation and storage in the Cloud, and contacted Supremus regarding HIPAA compliance examination for its product. Our consultant had performed several HIPAA Audit evaluations of this type before and so engaged with the client to discuss its design and implementation process, as well as the relevant HIPAA requirements that would impact this type of product offering. Our consultant evaluated their client’s design and development processes; its prospective provisioning model; its account management components and its planned security and privacy assurance measures. Following a complete review of these areas, our consultant [...]
Its primary responsibilities include revising test items, writing new test items, working with the testing program manager to evaluate and improve the assessment process, working with the professional staff in overseeing the administration of the program, and recommending needed changes in prerequisite and recertification requirements, subject to the approval. Committee Size: 9 members Term: 3 years Appointments per year: Varies For more information on responsibilities, eligibility and on how to become part of the committee, visit: https://www.hipaatraining.net/hipaa-certification-committee/ Regards, Bob Mehta Director Supremus Group LLC 515-865-4591 Bob@training-HIPAA.net www.Training-HIPAA.net Ask About Our Ransomware Solution (Up to 1 million in protection) Are you Conducting Regular Network Vulnerability Assessment
Supremus Group LLC announces the launch of the Spanish versions of HIPAA Training for Medical Provider, Business Associates, Group Health Plan and for Call CentersNuLLFiX
Waukee, IA, March 5, 2019– To help a growing number of Spanish speaking employees in the United States, Supremus Group LLC, a HIPAA compliance solutions and training provider, has announced exclusive certification training for HIPAA employees in the Spanish language. In a press briefing, the chief marketing officer of Supremus Group said, “We are happy to announce that the Spanish versions of our basic level courses of HIPAA for Medical Provider, HIPAA for Business Associates, Group Health Plan HIPAA course and HIPAA with CAN_SPAM for Call Center is ready for release and available for purchase.” For more information, visit HIPAA Spanish Training page. [...]
Memorial Healthcare Systems (MHS) offers the U.S. Department of Health and Human Services (HHS) the sum of $5 .5 million to clear up prospective transgression of the Medical Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Guidelines and additionally consented to put into effect a highly effective corrective action plan. MHS is a nonprofit establishment that manages six hospitals, an urgent care facility, a nursing home, including a range of ancillary health care centers in every area of the South Florida vicinity. MHS is as well associated with healthcare professional offices via an Organized Health Care Arrangement [...]