The Office for Civil Rights (OCR) has recommended healthcare cybersecurity best practices to prevent cyberattacks from succeeding and lessening their impact if they do succeed, as reported by Fred Donovan of Health IT Security. 1) Encryption: OCR recommends that organizations consider enlisting data encryption to prevent unauthorized of access to sensitive data, helping to reduce the risk of ePHI compromise. “HIPAA covered entities and business associates are required to asse
As more healthcare organizations face the overwhelming prospect of dealing with data breaches, they will have to become intimately familiar with the HIPAA Breach Notification Rule. According to a recent article on HealthITSecurity, here's what you should to know: The HIPAA Breach Notification rule requires that covered entities and business associates (BA’s) provide notification to individuals, regulators and the media following a breach of protected health information (PHI).
Since 2011, the Office for Civil Rights (OCR) has been auditing healthcare providers and business associates to determine overall compliance with HIPAA’s privacy and security laws. At a recent HIPAA security conference, OCR Director Roger Severino announced that future efforts will focus on enforcement, and upcoming audits will use harsher investigative tools to hold bad actors accountable, according to a recent article on EIN Presswire. Many practices and business associates
Did you know a medical provider has only 10 days to respond to a notification letter from the HHS Office for Civil Rights? That means there's no time like the present to start preparing for an OCR / HIPAA audit. A recent article on HealthDataManagement encourages medical offices to follow these guidelines to ensure they’re following best practices for compliance at all times: Document HIPAA Policies and Procedures: Medical organizations are required to implement reasonable an
Organizations in the healthcare industry can benefit from using Dropbox to store and share information. But is Dropbox HIPAA compliant? A recent article from Inspired e-Learning walks us through how to use Dropbox and stay within HIPAA Compliance. While Dropbox’s features and functions do support HIPAA/HITECH compliance -- it’s up to your organization to properly configure the platform and adjust its settings to remain within the bounds of the law. To do so, follow these step