With increasing federal scrutiny of health care data breaches, maintaining a secure network and clinical infrastructure is crucial for both payers and providers. Topics here include: data breaches, data encryption and other security techniques, access and authentication issues, and regulatory requirements.
With the HHS Office for Civil Rights expected to begin random HIPAA audits in 2015, covered entities should take another look at the expanded penalties for privacy and security violations under the updated HIPAA Omnibus rule that went into effect in September 2013.
The College of Healthcare Information Management Executives, which historically has represented chief information officers, is expanding to also represent chief technology officers and chief application officers.
Employers that are considering incorporating wearable fitness devices into their wellness programs are facing important decisions about the cost of those devices, and must also be prepared to allay employees concerns about data security.
The Electronic Healthcare Network Accreditation Commission, which certifies entities that process transactions or exchange health information for meeting best practices, has released for public comment draft criteria for a new accountable care organization accreditation program expected to be formally launched in early 2015.
While an external penetration test of the Food and Drug Administration's computer network and information systems by the Department of Health and Human Services Office of Inspector General did not result in unauthorized access, an IG audit did identify a number of cybersecurity vulnerabilities that could put FDA data at risk.
Americas patient privacy law, the Health Information Portability and Accountability Act of 1996, has been anything but static. Regulators have pushed to keep it current and to draft forward-looking rules. This fall is no different.
Robert Wood Johnson Foundation has launched a nationwide initiative that seeks to explore how information and data can be harnessed to help people lead healthier lives and build a culture of health.
As mobility becomes a core platform for healthcare communications and providers are increasingly integrating mHealth into their workflows, the management of those technologies has been slower to take shape-a critical oversight particularly in environments where medical staffs are using their own devices.
Given the past high-profile data security breaches at large retailers Target and Home Depot, legal officials maintain there may be more at stake for employers and benefit managers when lapses occur in healthcare provider systems.
Penn Highlands Brookville, one of the four hospitals of DuBois, Pa.-based Penn Highlands Healthcare, is offering identity protection services to about 4,500 patients after a physicians server may have been hacked.
The Office of the National Coordinator for HIT has named Lucia Savage, senior associate general counsel at UnitedHealthcare, as its new chief privacy officer effective Oct. 20.
At least two class action lawsuits have now been filed against hospital chain Community Health Systems following hacking attacks that compromised HIPAA-protected information for 4.5 million patients.
The U.S. Food and Drug Administration and Departments of Health and Human Services and Homeland Security will host a public workshop on Oct. 21-22 to develop a collaborative approach to medical device cybersecurity.
With the HHS Office for Civil Rights expected to soon launch its HIPAA audit program, it's worth considering creating a Book of Evidence on your organizations compliance with HIPAA privacy, security and breach notification rules.
Wireless technology is transformative, but you need a plan.