September 1st, 2023
Healthcare continues to be the most expensive industry for data breaches, with costs increasing 53% since 2020, according to research conducted by the Ponemon Institute. In fact, the average cost of a healthcare data breach reached a whopping $11 million this year, and the number of healthcare data breaches have been on the rise nearly every year since 2009.
August 1st, 2023
Most healthcare workers are familiar with the Health Insurance Portability and Accountability Act (HIPAA) and do their best to comply with HIPAA regulations. The majority of medical professionals understand that non-compliance can lead to severe consequences, including legal penalties, reputational damage, and loss of patient trust. Yet still, the healthcare sector accounts for the highest number of security breaches compared to any other industry. In fact, in 2021 alone, approximately 45 million healthcare records were stolen or compromised.
July 14th, 2023
In today's digital age, social media has become an integral part of our daily lives. However, for healthcare organizations and providers, navigating the world of social media can be complicated due to regulations set forth by the Health Insurance Portability and Accountability Act (HIPAA).
May 15th, 2023
Most healthcare organizations and medical practices understand that Health Insurance Portability and Accountability Act (HIPAA) was created to safeguard the confidentiality, privacy and security of patients’ personal health information (PHI) and compliance is crucial to avoid legal penalties, financial losses, and reputational damage. However, still HIPAA-related incidents have been rapidly increasing over recent years.
May 2nd, 2023
Healthcare cyberattacks are on the rise, but according to one report, nearly a third of healthcare employees said they had never received cybersecurity training from their workplace.
March 1st, 2023
HIPAA compliance can be a complex subject. If not careful, you can quickly end up on the wrong side of the law. As a national leader in HIPAA safety and compliance training, we receive hundreds of questions regarding HIPAA regulation. So, we have collected seven of the most frequently asked questions and answers about HIPAA.
February 3rd, 2023
Most healthcare organizations, medical and dental practices are fully aware of the importance of HIPAA law and take all appropriate measures to protect their patient's health information. However, employees who are not up-to-date on HIPAA rules and regulations can sometimes put a healthcare facility at risk for a potential violation that could damage a practice's reputation and result in significant penalties or criminal and civil fines.
January 5th, 2023
The HIPAA Safe Harbor Act was signed into law by President Trump on January 5, 2021. The law states that the Department of Health and Human Services (HHS) must consider whether organizations have utilized best practices for cybersecurity when investigating a data breach and undertaking HIPAA enforcement actions.
December 6th, 2022
If you work in healthcare, it's likely you are using social media in some way, shape or form. Healthcare organizations and medical practices utilize social media to engage with patients and consumers. Physicians and nurses research medical information through the internet and social media platforms. Hospitals use social media to supply patient information, announce news and events, further public relations and promote health.
November 7th, 2022
What is a HIPAA violation in the workplace?
A HIPAA violation occurs when a covered entity or business associate compromises an individual’s personal health information (PHI). This could be from a lack of awareness, training, or appropriate safeguards of PHI. Whether large or small, willful or negligent, HIPAA violations can be damaging to any hospital or medical practice and the patient or patients affected.
August 25th, 2022
Patients are incredibly concerned about healthcare data privacy, and rightly so. Healthcare data breaches have hit record numbers, and according to the U.S. government, in the last five months of 2022, breaches have almost doubled from the same period previous year. With nearly 20 million victims of data theft in the first half of the year, it is no wonder patients are worried about the lack of privacy.
July 19th, 2022
Although telemedicine has been around for decades, it was the COVID-19 pandemic that accelerated its rapid adoption. The demand for telehealth services surged at the beginning of the crisis as hospitals and healthcare providers rushed to implement technology solutions that could enable them to continue providing care for their at-risk patients remotely. Changes in reimbursement and healthcare regulation followed suit, and quickly this new healthcare delivery model became the new norm.
July 5th, 2022
Texting is a convenient and reliable way for healthcare organizations and providers to communicate with their patients. It is ideal for keeping up with appointments, reminders, payments, and other practice communications. While most people, including patients, prefer texting because it’s quick and easy, providers and their staff must comply with the Health Insurance Portability and Accountability Act (HIPAA).
May 24th, 2022
Most healthcare professionals are told that HIPAA is important and that there are severe consequences for noncompliance. However, there are often few discussions about why it is so important.
May 4th, 2022
Healthcare data breaches have been occurring at record levels, but not all privacy and security threats come from outside the organization. The Department of Health and Human Services' Health Sector Cybersecurity Coordination Center (HCC) recently issued a warning about insider threats.
What is an insider threat?
April 14th, 2022
Recently, the Director of the HHS’ Office for Civil Rights, Lisa J. Pino, issued a statement encouraging HIPAA covered entities and business associates to strengthen their cybersecurity posture this year in light of the increasing rates of cyberattacks across the healthcare industry.
The last year was particularly damaging for healthcare organizations due to hackers taking advantage of the COVID-19 pandemic.
March 15th, 2022
What is a HIPAA Consent Form?
A signed HIPAA consent form must be obtained from a patient before their protected health information (PHI) can be shared with any other individuals or organizations, except in the case of routine disclosures for treatment, payment or healthcare operations as permitted by the HIPAA Privacy Rule. The disclosure of medical records without a HIPAA authorization form is a HIPAA violation.
February 17th, 2022
This is a reminder that the HIPAA Breach reporting deadline is less than two weeks away, which means HIPAA breaches involving fewer than 500 individuals which occurred during 2021 must be reported to the U.S. Department of Health and Human Services (HHS) no later than Tuesday, March 1, 2022.
The HIPAA Breach Notification Rule places a strict time limit on the issuing of notifications and reporting of data breaches of individuals whose protected health information has been exposed. For breaches of PHI, notification letters to individuals affected must be sent within 60 days from the date of discovery and without reasonable delay.
February 8th, 2022
Most healthcare providers make every effort to ensure that HIPAA rules are followed, but sometimes accidents occur. What happens when there is an accidental HIPAA violation? How should an employee report an accidental HIPAA violation?
February 1st, 2022
The HIPAA Breach reporting deadline is less than a month away. Which means any breaches involving 500 individuals or less must be reported to the U.S. Department of Health and Human Services (HHS) no later than Monday, March 1, 2022.
What is a Data Breach?
Hospitals and Clinics Among the Most Dangerous Workplaces in America
Average cost of healthcare data breach reaches $11M
The 7 Deadly Sins of HIPAA and How Medical Practices Can Avoid Non-Compliance
Understanding HIPAA Requirements for Social Media and Protecting Patient Privacy Online