2013 and HIPAA - Health Care Compliance Brief

A Look at Changes in the NEW HIPAA Security Rule

Healthcare IT Today

JANUARY 7, 2025

Proposed Changes Require Strong Cybersecurity The newly proposed changes to the 2013 HIPAA Security Rule published yesterday in the U.S. Following federal rulemaking procedures, the proposed HIPAA Security Rule from the U.S.

HIPAA

HIPAA Compliance Ransomware Governance

HHS proposes HIPAA update to boost healthcare cybersecurity

Healthcare Dive

JANUARY 3, 2025

The update, which would be the first since 2013, aims to clarify and provide more instruction on securing health data as cyberattacks and breaches in the sector skyrocket.

HIPAA

HHS Imposes $200,000 HIPAA Right of Access Civil Monetary Penalty Against OHSU

Compliancy Group

MARCH 7, 2025

The HIPAA Privacy Rule requires that individuals and their personal representatives receive timely access to their medical records, said OCR Acting Director Anthony Archeval in a press release announcing the CMP. From May 29, 2013, until July 3, 2013, OHSU failed to implement policies and procedures to address security incidents.

HIPAA

HIPAA Compliance

Webinars

Bridging Innovation & Patient Care: The Growing Role of AI

MORE WEBINARS

AHA rebuts OCR's attempt to revise online tracking rules

Healthcare It News

APRIL 16, 2024

The American Hospital Association is taking exception at recently-updated rules from HHS Office for Civil Rights related to the use of online tracking tools by health systems and other HIPAA Covered Entities.

HIPAA

HIPAA Hospitals

HIPAA Compliance: Can Your Organization Avoid Costly Government Penalties and Fines?

Colington Consulting was established in 2013 and helps organizations achieve HIPAA compliance and ensures clients stay current with the latest enforcement trends. We provide a full range of HIPAA compliance services and consulting.

HIPAA

What did the HIPAA Omnibus Rule Mandate?

HIPAA Journal

JANUARY 12, 2024

The HIPAA Omnibus Rule mandated modifications to the Privacy, Security, and Enforcement Rules in order to adopt measures passed in the HITECH Act, finalized the Breach Notification Rule, and added standards to account for the passage of the GINA Act. The adoption of a four-tired civil monetary penalty structure for violations of HIPAA.

HIPAA

HIPAA Compliance Health Insurance Medicaid

Proposed HIPAA Updates and What They Mean for Healthcare IT teams

HIT Consultant

FEBRUARY 26, 2025

The Department of Health and Human Services (HHS) recently issued a notice of proposed HIPAA revisions HIPAA Security Rule to Strengthen the Cybersecurity of Electronic Protected Health Information which would bolster the current guidelines for policy updates. Provide a more specific review of their risk analyses.

HIPAA

HIPAA Compliance Hospitals

What is a HIPAA Violation?

HIPAA Journal

DECEMBER 31, 2022

To best answer the question what is a HIPAA violation, it is necessary to explain what HIPAA is, who it applies to, and what constitutes a violation; for although most people believe they know what a HIPAA compliance violation is, evidence suggests otherwise. What is HIPAA and Who Does It Apply To?

HIPAA

HIPAA Due Diligence Compliance Fraud

What is the Maximum Penalty for Violating HIPAA?

HIPAA Journal

SEPTEMBER 22, 2022

The maximum penalty for violating HIPAA is currently $1,919,173 (September 2022). When Congress passed HIPAA in 1996, it set the maximum penalty for violating HIPAA at $100 per violation with an annual cap of $25,000. The Penalties for Violating HIPAA Change after Review. Minimum Penalty per Violation.

HIPAA

HIPAA Compliance

Understanding the HIPAA Medical Records Destruction Rules

HIPAA Journal

SEPTEMBER 20, 2022

Some of the biggest fines for HIPAA violations have been for failing to comply with the medical records destruction rules. Although HIPAA has document retention requirements , there are no minimum retention periods for medical records. The HIPAA Medical Records Destruction Rules.

HIPAA

HIPAA Compliance Medical Billing

HIPAA Rights

HIPAA Journal

MARCH 2, 2022

The Health Insurance Accountability and Portability Act (HIPAA) introduced multiple HIPAA rights. Unfortunately, the failure to comply with Privacy Rule HIPAA rights is one of the leading reasons for complaints to the HHS Office for Civil Rights. Rights under the Privacy Rule. 45 CFR § 164.524 – Access of individuals to PHI.

HIPAA

HIPAA Health Insurance Public Health Compliance

OCR Announces 4 Financial Penalties to Resolve HIPAA Violations

HIPAA Journal

MARCH 29, 2022

The Department of Health and Human Services’ Office for Civil Rights (OCR) has announced its first financial penalties of 2022 to resolve alleged violations of the Health Insurance Portability and Accountability Act (HIPAA). Dental Practitioner Fined $30,000 for Noncompliance with the HIPAA Right of Access. Dr. Donald Brockley D.D.M,

HIPAA

HIPAA Compliance Health Insurance

What are the Penalties for HIPAA Violations?

HIPAA Journal

DECEMBER 24, 2022

Penalties for HIPAA violations can be issued by the Department of Health and Human Services’ Office for Civil Rights (OCR) and state attorneys general. In addition to financial penalties, covered entities are required to adopt a corrective action plan to bring policies and procedures up to the standards demanded by HIPAA. .

HIPAA

HIPAA Compliance Hospitals COVID-19

What is HIPAA?

HIPAA Journal

FEBRUARY 23, 2022

What is HIPAA? HIPAA is an acronym for the Health Insurance Portability and Accountability Act. So how did HIPAA evolve from being a vehicle for improving the portability and continuity of health insurance coverage to being one of the most comprehensive and detailed federal privacy laws? What is HIPAA Title II?

HIPAA

HIPAA Fraud Health Insurance Medicaid

HIPAA Compliance for Business Associates Refresher Training

American Medical Compliance

AUGUST 29, 2024

In today’s healthcare environment, ensuring compliance with the Health Insurance Portability and Accountability Act (HIPAA) is more crucial than ever, especially for business associates. Importantly, HIPAA does not consider members of a covered entity’s workforce to be business associates.

HIPAA

HIPAA Compliance Health Insurance

HIPAA Enforcement Rule

HIPAA Journal

APRIL 26, 2022

In 1996, the passage of HIPAA gave the Secretary of Health and Human Services (HHS) the authority to impose financial penalties for violations of the Administrative Simplification provisions (see Sections 1176 and 1177 ). The HIPAA Enforcement Rule takes Shape.

HIPAA

HIPAA Compliance

Is Stripe HIPAA Compliant?

HIPAA Journal

JANUARY 10, 2024

Stripe is not HIPAA compliant and – other than its payment processing services – should not be used by covered entities and business associates to create, collect, store, or transmit Protected Health Information (PHI). Is Stripe HIPAA Compliant? Stripe complies with multiple US and International data privacy regulations (i.e.,

HIPAA

HIPAA US Department of Health and Human Services Fraud Telemedicine

HIPAA Enforcement by State Attorneys General

HIPAA Journal

MAY 18, 2023

The Department of Health and Human Services’ Office for Civil Rights is the main enforcer of HIPAA compliance; however, state Attorneys General also play a role in enforcing compliance with the Rules of the Health Insurance Portability and Accountability Act (HIPAA). million individuals and for delayed breach notifications.

HIPAA

HIPAA Compliance Ransomware Hospitals

How Should You Respond to an Accidental HIPAA Violation?

HIPAA Journal

JANUARY 1, 2023

The majority of HIPAA-covered entities, business associates, and healthcare employees take great care to ensure HIPAA Rules are followed, but what happens when there is accidental HIPAA. How Should Employees Report an Accidental HIPAA Violation? How Should Covered Entities Respond to an Accidental HIPAA Violation?

HIPAA

HIPAA Hospitals Compliance Health Insurance

How HIPAA Affects the Role of Business Associates

Compliancy Group

APRIL 15, 2022

When do these service providers become business associates as defined by HIPAA, and what are their duties and responsibilities in the role of business associate? How HIPAA Affects the Role of Business Associates – The Basics. Let’s Simplify Compliance Do you need help with HIPAA? × HIPAA Compliance Simplified.

HIPAA

HIPAA Compliance

The Most Common HIPAA Violations You Should Avoid

HIPAA Journal

JANUARY 2, 2023

The settlements pursued by the Department of Health and Human Services’ Office for Civil Rights (OCR) are for egregious violations of HIPAA Rules. Settlements are also pursued to highlight common HIPAA violations to raise awareness of the need to comply with specific aspects of HIPAA Rules. Are Data Breaches HIPAA Violations?

HIPAA

HIPAA Compliance Hospitals Medicare

Editorial: 5 Gaps in HIPAA and How They Are Being Filled

HIPAA Journal

OCTOBER 21, 2022

There are – and always have been – gaps in HIPAA and, after more than a quarter of a century, some have yet to be addressed. Most of the gaps in HIPAA are attributable to omissions from the original Act, provisions of HIPAA and HITECH that have never been enacted, and the increasing use of technology in healthcare.

HIPAA

HIPAA Compliance Medicare Medicare

Required, Regular, (W)ritten: HHS’ Proposed Modifications to the HIPAA Security Rule

Compliancy Group

JANUARY 3, 2025

In 1998, when the HIPAA Security Rule was first proposed, some of these terms did not exist. Since 2013, when the Security Rule was last updated, threat actor activity has become more and more common in the healthcare sector, where opportunities for bad actors to cause disruption through hacking, ransomware, malware, and other means abound.

HIPAA

HIPAA Compliance Ransomware

Healthcare Data Breach Statistics

HIPAA Journal

MARCH 20, 2025

The HIPAA Journal has compiled healthcare data breach statistics from October 2009, when the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) started publishing summaries of healthcare data breaches on its website. This page is regularly updated to reflect the latest healthcare data breach statistics.

HIPAA

HIPAA Ransomware Compliance Hospitals

Breach Barometer Report Shows Over 50 Million Healthcare Records Were Breached in 2021

HIPAA Journal

MARCH 11, 2022

The report includes healthcare data breaches reported to regulators, as well as data breaches that have been reported in the media, incidents that have not been disclosed by the breached entity, and data breaches involving healthcare data at non-HIPAA-regulated entities. The data for the report was provided by databreaches.net.

HIPAA

HIPAA Ransomware Health Insurance

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

HIPAA Journal

MARCH 15, 2023

The United States Department of Justice has agreed to settle alleged False Claims Act violations with Jelly Bean Communications Design LLC and manager Jeremy Spinks related to the failure to protect HIPAA-covered data. FHKC initiated an investigation that revealed hackers had altered applications allowing data to be stolen.

Health Insurance

Health Insurance HIPAA Fraud Due Diligence

Progressive Therapeutics allays telehealth security concerns with EHR integration

Healthcare IT News - Telehealth

JULY 19, 2021

Nor was it HIPAA-compliant, a major concern. "The HIPAA waivers for telehealth implemented during the pandemic were critical for the widespread adoption of telehealth," said Dr. Nimish Shah, cofounder of Progressive Therapeutics. So the HIPAA waivers made sense. These apps got the job done, but they were disjointed.

COVID-19

COVID-19 HIPAA Ransomware Governance

HIPAA Rules and Regulations

HIPAA Journal

JULY 4, 2024

The HIPAA rules and regulations are the standards and implementation specifications adopted by federal agencies to streamline healthcare transactions and protect the privacy and security of individually identifiable health information. This guide explains why the HIPAA rules and regulations exist, what they consist of, and who they apply to.

HIPAA

HIPAA Compliance Fraud Medicare

Is Google Pay HIPAA Compliant?

HIPAA Journal

JANUARY 12, 2024

Google Pay is not HIPAA compliant because the text of HIPAA exempts entities from HIPAA compliance if they engage in “authorizing, processing, clearing, settling, billing, transferring, reconciling, or collecting payments for a financial institution.” What Does HIPAA Say about Payment Facilitators?

HIPAA

HIPAA Compliance

Third-Party Cyberattacks: The Healthcare Sector’s Achilles’ Heel

HIT Consultant

NOVEMBER 27, 2024

In addition to playing offense and defense on cyberattacks, healthcare organizations must also navigate a complex regulatory web, including HIPAA, which mandates strict safeguards for protected health information (PHI). Previously, they worked at Alliantist for 8 years, from January 2013 to May 2021, as Head of Products and Services.

Due Diligence

Due Diligence HIPAA Compliance Ransomware

Is HIPAA a Federal Law?

HIPAA Journal

MARCH 13, 2022

Although the answer to the question is HIPAA is federal law is yes, there are occasions when HIPAA is pre-empted by state laws or other federal laws – adding to the complexity of compliance. Many states now have privacy laws with more stringent provisions than HIPAA, but many only apply to specific health information (i.e.,

HIPAA

HIPAA Compliance Health Services Administration Public Health

Navigating New Horizons: 2023 HIPAA Rule Changes and PHI

Total HIPAA

MAY 31, 2023

HIPAA (Health Insurance Portability and Accountability Act) has evolved over the years to adapt to advancements in healthcare and technology. The 2013 HIPAA Omnibus Final Rule expanded its scope, and now the HIPAA Privacy Rule is set to change again in 2023. HIPAA’s Evolution: HIPAA has been crucial in U.S.

HIPAA

HIPAA Compliance Health Insurance

Understanding Who Is Bound by HIPAA

Compliancy Group

FEBRUARY 1, 2023

Nearly every American knows about the Health Insurance Portability and Accountability Act (HIPAA). But awareness of HIPAA is different from knowledge. In fact, HIPAA may be one of the most misunderstood regulations among the general public. The second group that is required to follow HIPAA guidelines is business associates.

HIPAA

HIPAA Compliance Health Insurance

ADEC Innovations Healthcare, Inc. Confirmed as HIPAA Compliant

HIPAA Journal

JANUARY 19, 2023

ADEC Innovations Healthcare has recently been confirmed as being in full compliance with all appropriate provisions of the HIPAA Privacy, Security, Breach Notification, and Omnibus Rules, and the HITECH Act.

HIPAA

HIPAA Compliance

One physician's perspective on why patients prefer telehealth visits

Healthcare IT News - Telehealth

JULY 16, 2021

We use a HIPAA-compliant software that allows for two-way, high definition video and audio. " According to a similar survey in 2013, where healthcare consumers (1,547) were pooled from around the world, 74% of them were comfortable with virtual doctor visits. To test this assumption, I surveyed my patients.

COVID-19

COVID-19 Doctors HIPAA Telemedicine

Children’s Hospital Colorado Fined by OCR

Compliancy Group

DECEMBER 10, 2024

In early December of 2024, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced it has issued a $548,625 civil monetary penalty (CMP) against Childrens Hospital Colorado (CHC), for the latters HIPAA compliance trip-ups: violations of the HIPAA Privacy and Security Rules.

Hospitals

Hospitals US Department of Health and Human Services HIPAA Compliance

Zero Day Microsoft Office Vulnerability can be Exploited with Macros Disabled

HIPAA Journal

JUNE 1, 2022

The vulnerability can be exploited in all Office versions since 2013, including the current version of Office 365. The post Zero Day Microsoft Office Vulnerability can be Exploited with Macros Disabled appeared first on HIPAA Journal. out of 10 (high severity), as Microsoft did not consider the Follina vulnerability to be critical.

HIPAA

Settlement Reached in Excellus HIPAA Class Action Lawsuit

Compliancy Group

JANUARY 27, 2022

A settlement has been reached between the plaintiffs’ attorneys and the company in the Excellus HIPAA class action lawsuit, pending judicial review. Basis of Excellus HIPAA Class Action Lawsuit. Let’s Simplify Compliance Protect your business from lawsuits by becoming HIPAA compliant today! Lifetime Benefit Solutions Inc.,

HIPAA

HIPAA Budget Development Compliance Ransomware

Zero Day Microsoft Exchange Server Vulnerabilities Being Actively Exploited

HIPAA Journal

OCTOBER 3, 2022

The flaws affect Microsoft Exchange Server 2013, 2016, and 2019. The post Zero Day Microsoft Exchange Server Vulnerabilities Being Actively Exploited appeared first on HIPAA Journal. The attacks have been limited so far, but the healthcare and public health sector in the United States could potentially be a target.

Public Health

Public Health HIPAA

Microsoft End of Support for 2023

Total HIPAA

JANUARY 18, 2023

Each year, we publish Microsoft’s End of Support list because using up-to-date software is essential for HIPAA compliance. So, what does this mean for users who need to stay HIPAA compliant ? Under the HIPAA Security Rule 45 C.F.R. Dynamics NAV 2013. Dynamics NAV 2013 R2. Access 2013. Dynamics GP 2013.

HIPAA

HIPAA Compliance

How Has COVID-19 Affected HIPAA Enforcement?

Total HIPAA

MARCH 1, 2021

Jason Karn, Total HIPAA’s Chief Compliance Officer, recently talked with David Smith, a nationally recognized healthcare benefits consultant and regulatory expert, to discuss HIPAA regulation during the COVID-19 pandemic. You can listen to this episode of our podcast HIPAA Talk here or on your mobile device via Apple Podcasts.

COVID-19

COVID-19 HIPAA Compliance Compliance Officers

Healthcare Marketing & HIPAA: Are You Following the Law?

Compliancy Group

SEPTEMBER 14, 2022

The Health Insurance Portability and Accountability Act (HIPAA), which controls what and when patient information may be shared for marketing purposes, was enacted before the electronic age. HIPAA and Healthcare Marketing. A large part of HIPAA regulates what is appropriate for the use or disclosure of patient information.

HIPAA

HIPAA Compliance Regulations Compliance Health Insurance

How to Stay HIPAA Compliant with Audit Logs

Total HIPAA

OCTOBER 28, 2019

A newsletter on the importance of importance of HIPAA logging requirements states this: 1. He altered patient records as part of a scheme to steal narcotics from a local hospital from January 2013 to May 2015. What HIPAA Security Rule Mandates. You can follow a HIPAA audit log template for your records.

HIPAA

HIPAA Compliance Fraud Hospitals

American Telemedicine Association Leaps Into Privacy and AI Policies

Healthcare IT Today

NOVEMBER 9, 2023

Principles Concerning Privacy According to Zebley, the privacy team believes that the federal government must update HIPAA, which covers organizations narrowly associated with traditional medical treatment, and regulated the many organizations and digital apps that collect personal health data. HIPAA was last revised in 2013.

Telemedicine

Telemedicine HIPAA COVID-19 FDA

A Look at Changes in the NEW HIPAA Security Rule

HHS proposes HIPAA update to boost healthcare cybersecurity

Webinars

Trending Sources

HHS Imposes $200,000 HIPAA Right of Access Civil Monetary Penalty Against OHSU

Webinars

AHA rebuts OCR's attempt to revise online tracking rules

HIPAA Compliance: Can Your Organization Avoid Costly Government Penalties and Fines?

What did the HIPAA Omnibus Rule Mandate?

Proposed HIPAA Updates and What They Mean for Healthcare IT teams

What is a HIPAA Violation?

What is the Maximum Penalty for Violating HIPAA?

Understanding the HIPAA Medical Records Destruction Rules

HIPAA Rights

OCR Announces 4 Financial Penalties to Resolve HIPAA Violations

What are the Penalties for HIPAA Violations?

What is HIPAA?

HIPAA Compliance for Business Associates Refresher Training

HIPAA Enforcement Rule

Is Stripe HIPAA Compliant?

HIPAA Enforcement by State Attorneys General

How Should You Respond to an Accidental HIPAA Violation?

How HIPAA Affects the Role of Business Associates

The Most Common HIPAA Violations You Should Avoid

Editorial: 5 Gaps in HIPAA and How They Are Being Filled

Required, Regular, (W)ritten: HHS’ Proposed Modifications to the HIPAA Security Rule

Healthcare Data Breach Statistics

Breach Barometer Report Shows Over 50 Million Healthcare Records Were Breached in 2021

Settlement Agreed with Florida Children’s Health Insurance Website Contractor to Resolve False Claims Act Allegations

Progressive Therapeutics allays telehealth security concerns with EHR integration

HIPAA Rules and Regulations

Is Google Pay HIPAA Compliant?

Third-Party Cyberattacks: The Healthcare Sector’s Achilles’ Heel

Is HIPAA a Federal Law?

Navigating New Horizons: 2023 HIPAA Rule Changes and PHI

Understanding Who Is Bound by HIPAA

ADEC Innovations Healthcare, Inc. Confirmed as HIPAA Compliant

One physician's perspective on why patients prefer telehealth visits

Children’s Hospital Colorado Fined by OCR

Zero Day Microsoft Office Vulnerability can be Exploited with Macros Disabled

Settlement Reached in Excellus HIPAA Class Action Lawsuit

Zero Day Microsoft Exchange Server Vulnerabilities Being Actively Exploited

Microsoft End of Support for 2023

How Has COVID-19 Affected HIPAA Enforcement?

Healthcare Marketing & HIPAA: Are You Following the Law?

How to Stay HIPAA Compliant with Audit Logs

American Telemedicine Association Leaps Into Privacy and AI Policies

Stay Connected