Health Data Use and Privacy Commission Act
HIPAA Updates

Investigation Suggests HIPAA Violations by Hospitals That Transfer Website Patient Data to Facebook

Hundreds of U.S. hospitals may be violating the Rules of the Health Insurance Portability and Accountability Act (HIPAA) by including the Meta Pixel tool on their websites, according to an investigation conducted by The Markup/STAT. […]

HIPAA Updates

OCR to Release Video Presentation to Improve Education on Recognized Security Practices under HITECH

In January 2021, the Health Information Technology for Economic and Clinical Health (HITECH) Act was amended (under Public Law 116-321) to require the Department of Health and Human Services to take any recognized security practices […]

Who Does HIPAA Apply To
HIPAA Advice

Who Does HIPAA Apply To?

The answer to the question who does HIPAA apply to is most often generalized as health plans, health care clearinghouses, and health care providers along with their Business Associates. Some sources also include contractors who […]

HIPAA and COVID-19 Vaccination Information
HIPAA Advice

Why was HIPAA Created?

The actual answer to the question why was HIPAA created may surprise many people who believe the Act´s sole purpose was to safeguard Protected Health Information (PHI). Indeed, the Privacy and Security Rules developed to […]

HIPAA Advice

Why is HIPAA Important?

The question why is HIPAA important can have multiple answers depending on whether you are a healthcare organization, a healthcare professional, or a patient. The answers to the question why is HIPAA important can also […]

CCPA News

California Attorney General Launches CCPA Enforcement Drive Against Customer Loyalty Programs

California Attorney General Rob Bonta has recently announced his office is conducting “an investigative sweep” of businesses that offer customer loyalty programs to ensure they are fully complying with the California Consumer Privacy Act (CCPA). […]

How Long Should You Keep Employee HIPAA Training Records?
HIPAA Advice

HIPAA Training for Clinics

Regardless of whether clinics are part of large healthcare systems or independent entities, the nature of HIPAA training for clinics should be the much the same. All members of the workforce should undergo Privacy Rule […]

HIPAA Advice

Refresher HIPAA Training for Nurses

Although most Covered Entities fulfil the basic requirements of HIPAA training for nurses, these may not always be enough to prevent avoidable HIPAA violations, data breaches, and patient complaints. Therefore, it is recommended Covered Entities […]

HIPAA Certification for Students
HIPAA Advice

HIPAA Certification for Students

Courses that provide HIPAA certification for students can be valuable assets for Covered Entities attempting to cultivate a HIPAA-compliant workforce as they resolve issues with the training requirements of the HIPAA Privacy and Security Rules […]

HIPAA Guidelines for Nursing Students
HIPAA Advice

HIPAA Guidelines for Nursing Students

Because of the role nursing students play in the provision of healthcare, the HIPAA guidelines for nursing students are straightforward. Nonetheless, there have been cases in which nursing students have unintentionally violated HIPAA regulations due […]

How Often is HIPAA Training Required?
HIPAA Advice

Web-Based HIPAA Training

There has been a significant growth in recent years in companies offering web-based HIPAA training courses. While these courses can provide valuable information about HIPAA and the reasons why policies and procedures exist to safeguard […]

HIPAA Certification Training
HIPAA Advice

Best HIPAA Training

Without doubt, the best HIPAA training is training that goes beyond the requirements of the Privacy and Security Rules so that Covered Entities and Business Associates have fully HIPAA-aware workforces that can identify potential HIPAA […]

Cybersecurity

CISA Warns of High-severity Vulnerability in Hillrom Welch Allyn Cardio Products

The DHS’ Cybersecurity and Infrastructure Security Agency (CISA) has issued a security alert warning healthcare providers about a high-severity vulnerability that affects certain Hillrom Welch Allyn cardio products. The vulnerability is an authentication bypass issue, […]

How Often is HIPAA Training Required?
HIPAA Advice

HIPAA Training for Employees

There are two standards in the Health Insurance Portability and Accountability Act that directly relate to HIPAA training for employees – the training standard of the Privacy Rule´s Administrative Requirements (45 CFR § 164.530) and […]

HIPAA and COVID-19 Vaccination Information
HIPAA Advice

HIPAA Training for Nurses

There is no question that HIPAA training for nurses is mandated by the Administrative Requirements of the HIPAA Privacy Rule. However, the content of HIPAA training for nurses should go further than the minimum requirements […]

How Long Should You Keep Employee HIPAA Training Records?
HIPAA Advice

Basic HIPAA Training

Because of some confusion about the HIPAA training requirements, many Covered Entities and Business Associates provide basic HIPAA training to all members of their workforces. While this is a good idea because it ensures everyone […]

HIPAA compliance for Medical Practices
HIPAA Advice

HIPAA Privacy Training

HIPAA privacy training is sometimes confused with HIPAA Privacy Rule training which requires Covered Entities to train members of its workforce on policies and procedures “with respect to PHI […] as necessary and appropriate for […]

HIPAA Certification Training
HIPAA Advice

HIPAA Training for Managers

The issue of HIPAA training for managers is complex because, although the Security Rule states management must be included in security awareness training (45 CFR § 164.308), there is no guidance provided on what other […]

HIPAA and COVID-19 Vaccination Information
HIPAA Advice

HIPAA Refresher Training

When you consider the risk analysis requirements of HIPAA, the potential for corrective action orders, and the inferences of the Security Rule training requirements, the provision of additional HIPAA refresher training training is practically unavoidable. […]

HIPAA Certification Training
HIPAA Advice

HIPAA Certification Training

HIPAA certification training for employees of HIPAA-covered entities or vendors that provide products or services to the healthcare industry has several advantages. In this post, we explain the benefits of HIPAA certification, but first it […]

HIPAA compliance for Medical Practices
HIPAA Advice

What is HIPAA Certification?

Any vendor that wants to provide goods or services to HIPAA-covered entities – healthcare providers, health plans, or healthcare clearinghouses – that requires access to protected health information (PHI) must comply with certain HIPAA provisions. […]

Cybersecurity

22% Of Healthcare Organizations Say Ransomware Attacks Increased Patient Mortality

Ransomware and other destructive cyberattacks on healthcare delivery organizations (HDOs) can cripple IT systems, prevent access to protected health information, and often see appointments cancelled and patients redirected to other healthcare facilities. The disruption caused […]

HIPAA Security Awareness Training
HIPAA Advice

HIPAA Security Awareness Training

HIPAA security awareness training is a requirement of the HIPAA Security Rule, which calls for HIPAA covered entities and their business associates to “implement a security awareness and training program for all members of its workforce (including […]

HIPAA Advice

Coronavirus and HIPAA Compliance

The Health Insurance Portability and Accountability Act (HIPAA) Rules still apply during public health emergencies such as the 2019 Novel Coronavirus (SARS-CoV-2) outbreak. When preventing and dealing with cases of COVID-19, the respiratory disease caused […]

CCPA News

CCPA and Cybersecurity

The General Data Protection Regulation (GDPR) introduced new standards for data protection in Europe. Introduced in May 2018, GDPR changed the way that businesses handle collect, handle, and process consumer data. The regulations also granted […]

CCPA News

CCPA Requirements

The Californian Consumer Privacy Act (CCPA) was signed into law in June 2018. Many data privacy experts have compared CCPA to Europe’s latest data protection legislation, the General Data Protection Regulations (GDPR). Much like GDPR, […]

CCPA News

CCPA and Businesses

Impact of CCPA on Business The Californian Governor Jerry Brown signed the Californian Consumer Privacy Act (CCPA) into law in June 2018. The CCPA has revolutionised the data privacy rights of Californian residents. CCPA offers […]