Monthly Archives: April 2005

New Linux HIPAA Software by Ecora

A Linux news site is reporting: Ecora has released Enterprise Auditor version 3.6 that includes its new HIPAA Report Pack, a collection of more than 150 pre-built report definitions that address the technical and administrative safeguards of the HIPAA security standard. “The manual process of preparing for a HIPAA security audit is time consuming, resource…

The Safe ID Act

Looks like Senator Clinton and Congressman Markey have introduced federal legislation to prevent offshore outsourcing of personal data: Senator Hillary Rodham Clinton and Representative Edward J. Markey announced that they would introduce the Safeguarding Americans from Exporting Identification Data (SAFE ID) Act in the United States Senate and House today, legislation that would protect the…

Ameritrade Loses Customer Data

Brokerage company Ameritrade is warning 200,000 former and current customers about the loss of a backup tape containing sensitive personal information. Jim Wagner of Internet News reports: The company discovered the loss in February when it received a damaged package containing a number of backup tapes shipped from its secure facilities in the U.S. Katrina…

HIPAA Deadline Passes with Little Fanfare

Well, the deadline to complete the security requirements of HIPAA passed yesterday with little fanfare. Internet News has the scoop “Considering everything that is involved with compliance, there are a lot of factors as to why some companies may not have completed it,” Earl Crane, a senior consultant with Foundstone Professional Services, said. Foundstone, a…

DHHS Publishes Proposed HIPAA Enforcement Rule

On April 18, 2005, the Federal Register published the proposed rule regarding enforcement of the HIPAA Administrative Simplification Rule. Comments on the proposed rule will be considered by the Department of Health and Human Services if received no later than June 17, 2005.

HIV Victim’s Suit Against Newspaper Continues

The Houston Chronicle is reporting: DALLAS — A state district court judge rejected a bid by an alternative weekly newspaper to dismiss a lawsuit filed by a church volunteer who said the paper reported without his permission that he was HIV-positive. The ruling Wednesday could clear the way for a trial. The judge did not…

Here Comes the Sarbanes-Oxley Backlash

The NY Times has a piece on rising corporate backlash over Sarbanes-Oxley: Last week, business representatives gathered in Washington at an all-day roundtable discussion held by federal regulators and complained about the cost of complying with a provision of the Sarbanes-Oxley corporate reform law. Not one business leader asked to repeal the law, which was…

More HIPAA Violations & Private Data Theft News

Techweb reports: Enforcement of the security regulations–like earlier HIPAA rules for privacy–will be complaint-driven, he says. Since the HIPAA privacy regulations, which identify what personal health information needs to be protected, took effect two years ago this month, there have been nearly 11,000 complaints filed to the federal government by patients and others. As of…

HIPAA News – HIPAA News – up to the minute news about HIPAA, HIPAA compliance and medical privacy issues.

So here’s another good HIPAA news site: HIPAA News – HIPAA News – up to the minute news about HIPAA, HIPAA compliance and medical privacy issues. HIPAA News is a next-generation experimental automated news gathering system. It uses the power of RSS feeds plus some cron job magic to enable up-to-the-minute coverage of important topics…

Doctors and Email

From the Chicago Tribune: “Despite advancing technology, medical practices have proven remarkably resistant to embracing e-mail as a tool to correspond with patients.” Jeff of the other HIPAA Blog says: It makes some sense, since doctors may be slightly more resistant than other professionals to any change from the way they’ve done things in the…

Firms Struggle with Sarbanes-Oxley Compliance

Note: this is slightly off-topic, though we reserve the right to discuss all kinds of governmental compliance, medical privacy, and identity theft issues here! Investor’s Business Daily has an article talking about how firms are struggling with Sarbanes-Oxley: Business executives are lined up to give government regulators an earful about their struggles and costs in…

Computer Theft Followup (HIPAA Violation in Question)

Jeff over at the other HIPAA Blog points out a medblogger who also notes the San Jose computer theft incident. The only problem? It’s not a HIPAA violation as they claim. (This according to Jeff Drummond, a guy who certainly knows his stuff.) Jeff Drummond: Grand Rounds is up, this time at GruntDoc, an ER…

Addressing IT Security Issues in the Era of Regulations (i.e. HIPAA)

Addressing IT Security Issues in the Era of Regulations (ie HIPAA) Paul B. Kurtz, Former Special Assistant to the President for Critical Infrastructure Protection, and Ron Moritz, Senior VP and Chief Security Strategist For Computer Associates, to Provide Keynote Addresses Morristown, NJ April 12, 2005 – IP Events, the producer of the Security Leadership Council…

Good-old Fashioned Theft (reveals patient’s health data)

Your data may be protected from internal tampering and data-snooping of employees… but what if your physical hardware is stolen? The other ‘HIPAA Blog’ reports: Sometimes identity theft and potential HIPAA-violating disclosures of PHI are sidelights of simple crime. Jeff continues: Here, theives broke into a medical office and stole the easily-salable valuables (computers and…

Medical Privacy Rule Confusing for Patients

Great article in the Lansing State Journal about the confusion among patients over medical privacy. Nicole Jacques reports: At Lansing dermatologist Gregory Messenger’s office, patients sign in by handing in a discreet slip of paper. Office workers shred any document with patients’ full names and Social Security numbers. And a few times every week, staff…