HIPAA Compliance

HIPAA Compliance

Average cost of healthcare data breach reaches $11M

September 1st, 2023

Healthcare continues to be the most expensive industry for data breaches, with costs increasing 53% since 2020, according to research conducted by the Ponemon Institute. In fact, the average cost of a healthcare data breach reached a whopping $11 million this year, and the number of healthcare data breaches have been on the rise nearly every year since 2009.

The 7 Deadly Sins of HIPAA and How Medical Practices Can Avoid Non-Compliance

August 1st, 2023

Most healthcare workers are familiar with the Health Insurance Portability and Accountability Act (HIPAA) and do their best to comply with HIPAA regulations. The majority of medical professionals understand that non-compliance can lead to severe consequences, including legal penalties, reputational damage, and loss of patient trust. Yet still, the healthcare sector accounts for the highest number of security breaches compared to any other industry. In fact, in 2021 alone, approximately 45 million healthcare records were stolen or compromised.

Understanding HIPAA Requirements for Social Media and Protecting Patient Privacy Online

July 14th, 2023

In today's digital age, social media has become an integral part of our daily lives. However, for healthcare organizations and providers, navigating the world of social media can be complicated due to regulations set forth by the Health Insurance Portability and Accountability Act (HIPAA).

4 Keys to Success: Ensuring HIPAA Compliance in Today's Healthcare Landscape

May 15th, 2023

Most healthcare organizations and medical practices understand that Health Insurance Portability and Accountability Act (HIPAA) was created to safeguard the confidentiality, privacy and security of patients’ personal health information (PHI) and compliance is crucial to avoid legal penalties, financial losses, and reputational damage. However, still HIPAA-related incidents have been rapidly increasing over recent years.

What is Cybersecurity Awareness Training and Why is it Necessary?

May 2nd, 2023

Healthcare cyberattacks are on the rise, but according to one report, nearly a third of healthcare employees said they had never received cybersecurity training from their workplace.

7 Most Frequently Asked Questions About HIPAA

March 1st, 2023

HIPAA compliance can be a complex subject. If not careful, you can quickly end up on the wrong side of the law. As a national leader in HIPAA safety and compliance training, we receive hundreds of questions regarding HIPAA regulation. So, we have collected seven of the most frequently asked questions and answers about HIPAA.

Top 7 HIPAA Violations to Avoid

February 3rd, 2023

Most healthcare organizations, medical and dental practices are fully aware of the importance of HIPAA law and take all appropriate measures to protect their patient's health information. However, employees who are not up-to-date on HIPAA rules and regulations can sometimes put a healthcare facility at risk for a potential violation that could damage a practice's reputation and result in significant penalties or criminal and civil fines.

What You Need to Know About the Safe Harbor Act and What it Means for Your Practice

January 5th, 2023

The HIPAA Safe Harbor Act was signed into law by President Trump on January 5, 2021. The law states that the Department of Health and Human Services (HHS) must consider whether organizations have utilized best practices for cybersecurity when investigating a data breach and undertaking HIPAA enforcement actions.

What You Need to Know About HIPAA and Social Media

December 6th, 2022

If you work in healthcare, it's likely you are using social media in some way, shape or form. Healthcare organizations and medical practices utilize social media to engage with patients and consumers. Physicians and nurses research medical information through the internet and social media platforms. Hospitals use social media to supply patient information, announce news and events, further public relations and promote health.

What You Should Know About Reporting a HIPAA Violation at Work

November 7th, 2022

What is a HIPAA violation in the workplace?

A HIPAA violation occurs when a covered entity or business associate compromises an individual’s personal health information (PHI). This could be from a lack of awareness, training, or appropriate safeguards of PHI. Whether large or small, willful or negligent, HIPAA violations can be damaging to any hospital or medical practice and the patient or patients affected.

Patients Concerned About Healthcare Data Privacy

August 25th, 2022

Patients are incredibly concerned about healthcare data privacy, and rightly so. Healthcare data breaches have hit record numbers, and according to the U.S. government, in the last five months of 2022, breaches have almost doubled from the same period previous year. With nearly 20 million victims of data theft in the first half of the year, it is no wonder patients are worried about the lack of privacy.

7 Tips for HIPAA Compliant Telehealth

July 19th, 2022

Although telemedicine has been around for decades, it was the COVID-19 pandemic that accelerated its rapid adoption. The demand for telehealth services surged at the beginning of the crisis as hospitals and healthcare providers rushed to implement technology solutions that could enable them to continue providing care for their at-risk patients remotely. Changes in reimbursement and healthcare regulation followed suit, and quickly this new healthcare delivery model became the new norm.

5 Best Practices for HIPAA Compliant Texting

July 5th, 2022

Texting is a convenient and reliable way for healthcare organizations and providers to communicate with their patients. It is ideal for keeping up with appointments, reminders, payments, and other practice communications. While most people, including patients, prefer texting because it’s quick and easy, providers and their staff must comply with the Health Insurance Portability and Accountability Act (HIPAA).

Why Is HIPAA Important?

May 24th, 2022

Most healthcare professionals are told that HIPAA is important and that there are severe consequences for noncompliance. However, there are often few discussions about why it is so important.

Tips for Preventing Insider Threats in Healthcare

May 4th, 2022

Healthcare data breaches have been occurring at record levels, but not all privacy and security threats come from outside the organization. The Department of Health and Human Services' Health Sector Cybersecurity Coordination Center (HCC) recently issued a warning about insider threats.

What is an insider threat?

OCR Encourages HIPAA Entities to Strengthen Cybersecurity Posture

April 14th, 2022

Recently, the Director of the HHS’ Office for Civil Rights, Lisa J. Pino, issued a statement encouraging HIPAA covered entities and business associates to strengthen their cybersecurity posture this year in light of the increasing rates of cyberattacks across the healthcare industry.

The last year was particularly damaging for healthcare organizations due to hackers taking advantage of the COVID-19 pandemic.

What You Need to Know About HIPAA Consent Forms

March 15th, 2022

What is a HIPAA Consent Form?

A signed HIPAA consent form must be obtained from a patient before their protected health information (PHI) can be shared with any other individuals or organizations, except in the case of routine disclosures for treatment, payment or healthcare operations as permitted by the HIPAA Privacy Rule. The disclosure of medical records without a HIPAA authorization form is a HIPAA violation.

Reminder- The Deadline is Approaching for Reporting Small HIPAA Breaches

February 17th, 2022

This is a reminder that the HIPAA Breach reporting deadline is less than two weeks away, which means HIPAA breaches involving fewer than 500 individuals which occurred during 2021 must be reported to the U.S. Department of Health and Human Services (HHS) no later than Tuesday, March 1, 2022.

The HIPAA Breach Notification Rule places a strict time limit on the issuing of notifications and reporting of data breaches of individuals whose protected health information has been exposed. For breaches of PHI, notification letters to individuals affected must be sent within 60 days from the date of discovery and without reasonable delay.

Accidental HIPAA Violations

February 8th, 2022

Most healthcare providers make every effort to ensure that HIPAA rules are followed, but sometimes accidents occur. What happens when there is an accidental HIPAA violation? How should an employee report an accidental HIPAA violation?

HIPAA Breach Reporting Deadline (03/01/2022)

February 1st, 2022

The HIPAA Breach reporting deadline is less than a month away. Which means any breaches involving 500 individuals or less must be reported to the U.S. Department of Health and Human Services (HHS) no later than Monday, March 1, 2022.

What is a Data Breach?

1 2 3 4

Get Weekly Updates

* indicates required


All Posts

Billing and Coding Compliance

Compliance Topics

Corporate Compliance

Dental OSHA Compliance

HIPAA Compliance

HIPAA Online Training

HIPAA Onsite Training

ICD-10 Compliance

OSHA Compliance

OSHA Online Training

OSHA Onsite Training

Veterinary OSHA Compliance

Recent Posts

Hospitals and Clinics Among the Most Dangerous Workplaces in America

Average cost of healthcare data breach reaches $11M

The 7 Deadly Sins of HIPAA and How Medical Practices Can Avoid Non-Compliance

Understanding HIPAA Requirements for Social Media and Protecting Patient Privacy Online

What Organization’s Need to Know About Hazard Communication