Call Us Today! 515-865-4591|Bob@hipaatraining.net

NuLLFiX

About NuLLFiX

This author has not yet filled in any details.
So far NuLLFiX has created 29 blog entries.

Children’s Medical Centre of Dallas to pay HIPAA fines of $3,217,000 for non-compliance with multiple security rule standards

The U. S. Department of Health and Human Services, the Office of Civil Rights (OCR) of has announced civil money penalty against Children’s Medical Centre of Dallas (Children’s) under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and this based on its impermissible disclosure of unsecured electronic protected health information (ePHI) and non-compliance over many years with multiple standards of the HIPAA Security Rule. A noticed of proposed Determination in accordance with 45 CFR 160.420 was issued by OCR and the notice included instruction for how Children’s could file a request for a hearing. Accordingly, OCR issued another Notice [...]

Children’s Medical Centre of Dallas to pay HIPAA fines of $3,217,000 for non-compliance with multiple security rule standards

The HIPAA Privacy Rule and Same Sex Relationships

There is a great deal of social change underway in terms of how we collect, use, and share information about organizations and people.  Privacy seems to be threatened from all sides by many forms of compromise:  from cyber criminals seeking to exploit personal information for gain, to we ourselves sharing our own stories through Social Media across the World-Wide Web.  Certainly, today there is more information “out there” than ever before, and this is cause for concern. One of the areas where control is being enforced is over patient information:  how it is to be shared, who can have access, what [...]

The HIPAA Privacy Rule and Same Sex Relationships

University of Mississippi Medical Center slapped with fine of $2.75 million for alleged violations of HIPAA

The University of Mississippi (UM) Medical Center (UMMC) agrees to resolve with the U.S. Department of Health and Human Services Officer for Civil rights (OCR)  for multiple alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) for the amount of $2.75 million. While investigating, OCR informed that UMMC knew about the consequences and risks that might create problems since April 2005, but they have not taken any security or risk management steps until the breach happened. This happened entirely due to the deficiency of work and management from the part of UMMC. Thus to compensate they will pay $2,750,000 [...]

University of Mississippi Medical Center slapped with fine of $2.75 million for alleged violations of HIPAA

Feinstein’s security and procedural failures results in $3.9 million HIPAA settlement

The Feinstein Institute for Medical Research has agreed to pay a fee to the United States Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) in the amount of $3.9 million as a court settlement against alleged infractions of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules. Like most OCR settlements, the penalty Feinstein will incur also includes a major corrective plan to ensure its future actions are brought into compliance. OCR released a statement regarding the incident, emphasizing OCR’s steadfast resolve to enforcing HIPAA Privacy and Security Rules. OCR released in a press [...]

Feinstein’s security and procedural failures results in $3.9 million HIPAA settlement

Resources for Mobile Health Apps Developers

Are you developing a Mobile Health App? Please look to this Mobile Health Apps Interactive Tool for the scoop on what laws you’ll need to abide by! The United States Federal Trade Commission (FTC) decided to pioneer the mobile health app service sphere. This new web-based tool has been designed to aidcreators of mobile health apps in their continued understanding of which federal laws will apply to them. The FTC built the interactive tool in team with the Department of Health and Human Services’ (HHS) Office of Civil Rights (OCR), the HHS Office of National Coordinator for Health Information Technology (ONC), and the Food and [...]

Resources for Mobile Health Apps Developers

Bill To Change Mental Health Record Sharing Under HIPAA

In a new bill that is being introduced to The House Energy and Commerce Committee’s Health Subcommittee on June 16th changes would be made to mental health record sharing. It aims to change the hesitation that many healthcare providers have in sharing patient information, even when it is in the best interest of the patient. In this case the bill if focusing primarily on mental health crises and cases. It would allow healthcare providers to share important information with a patient’s family members, friends and others with the patient’s permission when they have the capacity to make healthcare decisions. More importantly, it [...]

Bill To Change Mental Health Record Sharing Under HIPAA

How HIPAA Certification Training of Certified HIPAA Privacy Security Expert (CHPSE) could’ve saved New York Presbyterian $2.2M

Washington, D.C. – The Department of Health and Human Services’ Office for Civil Rights (OCR) has announced it reached a $2.2M court settlement with the New York Presbyterian Hospital for its calamitous infraction of HIPAA privacy rules. This settlement was announced April 21, 2016. The hospital made an amateur and egregious error when it disclosed the protected health information of two of its patients. The hospital provided this information to film crews and their staff during the filming of an ABC television series called “NY Med.” The hospital provided the protected information to without consulting with and obtaining authorization from the patients. [...]

How HIPAA Certification Training of Certified HIPAA Privacy Security Expert (CHPSE) could’ve saved New York Presbyterian $2.2M

Raleigh Orthopedic loses thousands in HIPAA paperwork error

Raleigh, N.C.—The Department of Health and Human Services’ Office for Civil Rights (OCR) has recently announced that the Raleigh Orthopedic Clinic of North Carolina has agreed to pay $750,000 in settlement fees. The clinic faced charges that it had potentially violated HIPAA privacy rules. The “potential violation” as released by the OCR is meant to obfuscate the role the Raleigh Clinic had in its infraction of HIPAA privacy rules, the company unequivocally broke the law. The violation occurred when the Raleigh clinic handed over the protected health information of approximately 17,300 patients to a potential business associate without first executing a business [...]

Raleigh Orthopedic loses thousands in HIPAA paperwork error

Physical Therapy provider to pay $25000 for adding patient testimonials with images without proper authorization

Complete P.T., Pool & Land Physical Therapy, Inc. has agreed to settle violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rules with the U.S. Department of Health and Human Services Office for Civil Rights (OCR). Complete P.T. is a physical therapy practice located in the Los Angeles area.  The settlement agreement is an admission of civil liability by Complete P.T., requiring payment of $25,000, adoption and implementation of a corrective action plan, and annual reporting of compliance efforts for a one year period. On August 8, 2012, OCR received a complaint alleging that Complete P.T. had impermissibly disclosed [...]

Physical Therapy provider to pay $25000 for adding patient testimonials with images without proper authorization

When Encryption Isn’t Enough

There are rare occasions in the health care industry when the encryption of protected patient health information isn’t enough to maintain its security. While these instances are thankfully few and far between, there are times when just encrypting the data isn’t enough to protect patient information. These times can be nightmares for healthcare entities, but if they are informed about when encryption might not be enough, they will be better prepared to handle breaches if they occur. Encryption can be an excellent tool for guarding patient information, but there are times that it is not enough. Those include when a data [...]

When Encryption Isn’t Enough

Title

Go to Top