Category Archives: HIPAA Compliance

April 21: Deadline for Small Health Plans to Comply with HIPAA

The deadline is looming, according to Business & Legal Reports: The deadline for small [health] plans to comply with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) security standards is drawing near. The security standards are a corollary to the HIPAA Privacy Rule, which created national standards to protect individuals’ medical records and…

Barbara Clark’s HIPAA Lawsuit & Investigation

A press release came across the wire recently, put out by Barbara Clark’s people, stating: Nearly one year ago, Barbara Clark, a former Adventist nurse, filed a complaint with the U.S. Department of Health and Human Services (DHHS) concerning the breach of confidentiality of her medical records under HIPAA; the federal Health Insurance Portability and…

Ohio Justices to Determine whether State Law Trumps HIPAA

Here’s an interesting twist on the old federal vs. state jurisdictional dispute. First Amendment Center is reporting: COLUMBUS, Ohio — A newspaper wants to report on homes, many of them rented, where lead paint has harmed children. The city health department fears federal fines and penalties if it complies with the state’s open-records law. In…

HIPAA Compliance 2005 Forum in Nashville

This is probably more of a local interest, as it’ll be located in Nashville, but to whomever it may concern, I found this press release today, announcing that a HIPAA compliance forum would be held in nashville on November 14th and 15th: The NYU Medical center is part of a “23% minority of healthcare organizations…

Is a lead paint violation notice covered by HIPAA or by state disclosure laws?

The Ohio Supreme Court is going to rule on whether state disclosure laws overrule the federal HIPAA mandates for protecting patient privacy. This may be one of the first rulings on the HIPAA regulations and should help establish precedent for exactly when state laws should rule instead of federal law. The newspaper’s attorney, Jack Greiner,…

St. Joseph Hospital Medical Records Stolen?

The privacy spot reports: According to the Houston Chronicle, Christus St. Joseph Hospital sent approximately 16,000 letters to patients informing them that a computer stolen in a burglary earlier this year may have contained some of their medical records and Social Security numbers. According to the hospital letters, the only patient files affected, to their…

IBM and Accenture Buy Health Care Firms

Just catching up on a bit of HIPAA / Healthcare / Privacy news of late. Seems IBM announced that it was acquiring Healthlink, the largest U.S. consulting firm dedicated to the health-care industry. Rochelle Garner of CRN reports: IBM announced Tuesday that it will buy Healthlink, the largest U.S. consulting firm dedicated to the health-care…

New Linux HIPAA Software by Ecora

A Linux news site is reporting: Ecora has released Enterprise Auditor version 3.6 that includes its new HIPAA Report Pack, a collection of more than 150 pre-built report definitions that address the technical and administrative safeguards of the HIPAA security standard. “The manual process of preparing for a HIPAA security audit is time consuming, resource…

HIPAA Deadline Passes with Little Fanfare

Well, the deadline to complete the security requirements of HIPAA passed yesterday with little fanfare. Internet News has the scoop “Considering everything that is involved with compliance, there are a lot of factors as to why some companies may not have completed it,” Earl Crane, a senior consultant with Foundstone Professional Services, said. Foundstone, a…

DHHS Publishes Proposed HIPAA Enforcement Rule

On April 18, 2005, the Federal Register published the proposed rule regarding enforcement of the HIPAA Administrative Simplification Rule. Comments on the proposed rule will be considered by the Department of Health and Human Services if received no later than June 17, 2005.

More HIPAA Violations & Private Data Theft News

Techweb reports: Enforcement of the security regulations–like earlier HIPAA rules for privacy–will be complaint-driven, he says. Since the HIPAA privacy regulations, which identify what personal health information needs to be protected, took effect two years ago this month, there have been nearly 11,000 complaints filed to the federal government by patients and others. As of…

Computer Theft Followup (HIPAA Violation in Question)

Jeff over at the other HIPAA Blog points out a medblogger who also notes the San Jose computer theft incident. The only problem? It’s not a HIPAA violation as they claim. (This according to Jeff Drummond, a guy who certainly knows his stuff.) Jeff Drummond: Grand Rounds is up, this time at GruntDoc, an ER…

Good-old Fashioned Theft (reveals patient’s health data)

Your data may be protected from internal tampering and data-snooping of employees… but what if your physical hardware is stolen? The other ‘HIPAA Blog’ reports: Sometimes identity theft and potential HIPAA-violating disclosures of PHI are sidelights of simple crime. Jeff continues: Here, theives broke into a medical office and stole the easily-salable valuables (computers and…

HIPAA Portability Rules Change

Just came across this article from Business & Legal Reports. The initial HIPAA rules were issued in 1997. Well, there have been several modifications since then. Are you compliant with the 1997 rules, or the latest (including the modifications)? It’s probably best to be on the safe side and review all of the major changes…

HIPAA Enforcement Lax?

A Silicon Valley Business Journal article reports that enforcement of HIPAA regulations may not be enforced with an iron fist. Well, folks, looks like that’s it for HIPAA Blog. No need to keep updating this site if it’s not going to be enforced. If you’re not going to be prosecuted (or fined heavily)… why worry…