Category: Security

As myriad healthcare organizations have attested, the aftermath of a HIPAA violation generally isn’t a pretty sight, especially when it comes to one’s bank account. One Indiana-based health system has witnessed this reality after being slapped with an $800,000 settlement for violating the HIPAA Privacy Rule. read more …read more    

Uncertainty about where sensitive and confidential data is located causes more worry for security pros than hackers or malicious employees, according to a new survey from the Ponemon Institute. read more …read more    

The Fort Wayne, Ind.-based Parkview Health System will pay $800,000 and adopt a corrective action plan to address deficiencies in its HIPAA compliance program, according to a settlement with the U.S. Department of Health and Human Services Office for Civil Rights (OCR). The Fort Wayne, Ind.-based Parkview Health System will pay $800,000 and adopt a…

Helping small providers boost HIPAA awareness remains “a work in progress,” Devin Jopp, president and CEO of the Workgroup for Electronic Data Interchange, told Health IT Security. read more …read more    

The Federal Trade Commission’s administrative trial examining the data-security practices of LabMD is on hold, Healthcare Info Security reports. read more …read more    

VA Seeks Proposals for New Scheduling Technology The VA will issue an RFP for commercial scheduling software to replace its existing VistA scheduling system which, in the fallout of the VA waitlist scandal, has been heavily criticized as being outdated and unfit for use. Major medical records breaches pass 1,000 milestone as enforcement ramps up…

The Office for Civil Rights’ crackdown on HIPAA violations over the past year will “pale in comparison” to the next 12 months, a Health and Human Services attorney recently told an American Bar Association conference. read more …read more    

California Court of Appeals has ruled in favor of Eisenhower Medical Center in Rancho Mirage, Calif., saying that the 524-bed, community hospital is not liable for releasing personal identifying information on patients if that information doesn’t include medical history, mental or physical condition, or treatment. California Court of Appeals has ruled in favor of Eisenhower…

As anyone who’s ever worked for IT security can attest, the job is no walk in the park. New threats, compliance mandates, vulnerabilities and updates are constant. But with strong leadership, and a culture of compliance and responsibility to match, many healthcare organizations have shown it can be done right — and well. read more…

Laying the groundwork is essential to successfully implementing role-based access control at healthcare organizations, PeaceHealth’s Christopher Paidhrin tells HealthcareInfoSecurity in an interview. read more …read more