Author Archives: Gabriel

Is a lead paint violation notice covered by HIPAA or by state disclosure laws?

The Ohio Supreme Court is going to rule on whether state disclosure laws overrule the federal HIPAA mandates for protecting patient privacy. This may be one of the first rulings on the HIPAA regulations and should help establish precedent for exactly when state laws should rule instead of federal law. The newspaper’s attorney, Jack Greiner,…

HIPAA News – HIPAA News – up to the minute news about HIPAA, HIPAA compliance and medical privacy issues.

So here’s another good HIPAA news site: HIPAA News – HIPAA News – up to the minute news about HIPAA, HIPAA compliance and medical privacy issues. HIPAA News is a next-generation experimental automated news gathering system. It uses the power of RSS feeds plus some cron job magic to enable up-to-the-minute coverage of important topics…

AHA calls for guidance on HIPAA National Provider Identifier (NPI)

The AHA (American Hospital Association) testified before Congress on April 6, 2005 regarding the National Provider Identifier (NPI) regulation. Their testimony recommends additional guidance about subpart identification in particular as well as suggests a timeline for implementation.

Press Release: ITSPA Advises Small to Medium-Size Businesses to Secure Technology that Will Meet New HIPAA Standards

ITSPA (Information Technology Solution Providers Alliance) cites statistics that “only 30 percent of health plans, or payers, and 18 percent of healthcare providers are currently HIPAA-compliant, and nearly 26 percent of payers and 40 percent of healthcare providers had experienced a security breach in the last six months”. Are you HIPAA-compliant? What are your biggest…

HIPAA creates new job opportunities – Paper Shredding business

More and more people are realizing that there are new business opportunities relating to HIPAA and HIPAA compliance. In Colorado one doctor started a mobile paper shredding company to help service companies that fall under the requirements of HIPAA and FACTA. The Pueblo Chieftain Online – Pueblo, Colorado U.S.A With the passage of HIPAA and…

California Health Insurance Information and News

California Health Insurance Information and News: Sunday, March 13, 2005 Pre-existing Medical Conditions and Health Insurance – what to do? We often get calls from people with pre-existing medical conditions who are concerned that a California health insurance company will decline to offer them insurance. This is a legitimate concern. We estimate that California medical…

2-Factor Authentication good enough for HIPAA?

Nice article by Bruce Schneier, once again confirming that he is an excellent thinker when it comes to network security issues. Thinking about implementing 2-factor authentication as part of your HIPAA-compliance strategy? Don’t rely too much on this technique, since attackers are beginning to actively target valuable information in ways that defeat 2-factor authentication. Two-Factor…

HIPAA Regulations Force Medical Practices to Reconsider Email and Web Communications

HIPAA Regulations Force Medical Practices to Reconsider Email and Web Communications Hagerstown, MD (PRWEB) March 5, 2005 — The latest updates to the Health Insurance Portability and Accountability Act (HIPAA) call for health care providers to adopt secure communication practices to protect Patient Identifiable Data. While not specific as to which technologies should be used,…

HIPAA FAQs about Lawyers as Business Associates under HIPAA

Want to know exactly what the rules are concerning your lawyer or attorney regarding being a business associate? The OCR has the answers. 1 New – May a covered entity that is a party in a legal proceeding use or disclose PHI for the litigation? 2 New – Must lawyer-business associates require others to agree…

Group Polishes Guidelines on HIPAA Security Rules – Computerworld

More HIPAA guidelines in the works due soon from nonprofit group. Data Protection HIPAA’s security rules, which were published in The Federal Register in April 2003, specify administrative, technical and physical measures that companies have to implement to protect confidential patient data. Jopp said the working group’s compliance guidelines are based on a variety of…

John Udell’s hospital experience and observations about HIPAA violations

John Udell at Infoworld gives his take on the current state of data entry at hospitals, and the HIPAA violations that he observed and offers possible solutions to the repetitous answering of the same questions over and over. Tales from the data entry trenches When it comes to compiling and managing complex data, many applications…

Doctor’s office installing WiFi hotspot in waiting room – possible security risk?

The Star-Telegram in Texas reports on a doctor’s office where they’re installing a wireless hotspot in the waiting room. While we agree that this is probably a great thing for patients (we love our hotspots, we do), it might not be such a hot idea to be making IT infrastructure available to the public (even…

Patient Sues Healthcare System Over Ad Containing PHI

Interesting case where a doctor holding a file in an advertisement was actually holding a real live patient’s file. Stupidity like this can only be rewarded by fat lawsuit the patient has filed against the hospital system. HIPAAnews – The Latest News about HIPAA A Cumberland County, PA, woman is suing a major midstate hospital…

InfoWorld: SSL VPN security threatened by desktop search engines

If you’ve installed Google’s new desktop search tool, you might want to consider the security issues of having software that caches SSL-encrypted traffic specifically so it can be rapidly and easily searched. This has clear implications for administrators responsible for maintaining HIPAA-secure information technology. InfoWorld: SSL VPN security threatened by desktop search engines: November 12,…

Acusis Announces Preparedness for 2005 HIPAA Security Deadline

Acusis Announces Preparedness for 2005 HIPAA Security Deadline Acusis Announces Preparedness for 2005 HIPAA Security Deadline PITTSBURGH–(BUSINESS WIRE)–Nov. 10, 2004–Acusis(R), a leading provider of outsourced medical transcription services, has announced today their associates completed a Health Insurance Portability and Accountability Act of 1996 (HIPAA) education and training course. Over 540 employees globally have participated in…