HIPAA Journal

JANUARY 27, 2023

This is the third article in the ‘Benefits of HIPAA’ series, this time around exploring how the Health Insurance Portability and Accountability Act (HIPAA) and its subsequent amendments have benefited patients. A World of Change for Patients It has now been 27 years since HIPAA was signed into law by President Clinton.

HIPAA 107

HIPAA Health Insurance Fraud Electronic Medical Records 107

Compliancy Group

MARCH 2, 2022

Ultimately, your vendor’s vulnerabilities are your vulnerabilities, which is why HIPAA emphasizes the importance of business associate compliance. Business associate vendors must be compliant with HIPAA standards. So how do you ensure that you are choosing HIPAA compliant vendors? What Makes a Vendor HIPAA Compliant?

HIPAA 98

HIPAA Electronic Medical Records Compliance 98

HIPAA Journal

JULY 28, 2023

Generative artificial intelligence chatbots such as OpenAI’s ChatGPT are attractive tools for clinicians as they can be used to automate repetitive administrative tasks such as producing medical notes for electronic medical records, saving considerable time. Crucially, Amazon’s offering is HIPAA-eligible.

HIPAA 97

HIPAA Electronic Medical Records Doctors Health Insurance 97

HIT Consultant

OCTOBER 23, 2024

Based on their medical knowledge library, vocabulary dataset, and secure access to the patient’s medical history, these applications can generate a precise output of patient info, symptoms, medical conclusions, prescriptions, subsequent appointments, etc.

Telemedicine 124

Telemedicine Doctors Electronic Medical Records COVID-19 124

Compliancy Group

DECEMBER 6, 2024

million civil monetary penalty (CMP) against Gulf Coast Pain Consultants, LLC d/b/a Clearway Pain Solutions Institute (Gulf Coast Pain Consultants, or Gulf Coast) for HIPAA Security Rule violations – most HIPAA workforce access violations. CMP details are provided below. 164.308(a)(ii)(A) prior to the breach incident.

HIPAA 97

HIPAA Electronic Medical Records Compliance Medicare 97

HIPAA Journal

AUGUST 5, 2022

Arlington Skin Notifies 17,468 Patients About Electronic Medical Record Data Breach. VPN Solutions managed the electronic medical records of patients of Arlington Skin via the Allscripts practice management solution and electronic medical records platform. Dr. Michelle A.

Electronic Medical Records 119

Electronic Medical Records Health Insurance Fraud HIPAA 119

Sharps Compliance

JANUARY 19, 2022

All healthcare providers and their business associates have an ethical and legal obligation to follow the provisions under The Health Insurance Portability and Accountability Act (HIPAA). HIPAA rules went into effect in 2003. Continue reading HIPAA-Compliant Waste Management at Sharps Compliance Blog.

HIPAA 68

HIPAA Electronic Medical Records Health Insurance Compliance 68

HIPAA Journal

FEBRUARY 23, 2022

The intrusion was limited to a single file server and its electronic medical records were not compromised. This appears to be a placeholder to meet HIPAA breach reporting requirements until the full extent of the breach is known. The files accessed included the following types of information.

Electronic Medical Records 142

Electronic Medical Records HIPAA Health Insurance Medical Billing 142

HIPAA Journal

APRIL 19, 2022

Between January 1 and July 31, 2018, a system that monitored unauthorized accessing of PHI at a large academic medical center flagged unauthorized accessing of electronic medical records by 444 employees, all of whom were professional medical staff who were not part of the patient’s intervention team and did not have access permission.

Electronic Medical Records 134

Electronic Medical Records HIPAA Hospitals Compliance 134

HIPAA Journal

AUGUST 11, 2022

One notable breach is a ransomware attack on the HIPAA business associate, Professional Finance Company. That one breach alone affected 657 HIPAA-covered entities, and only a few of those entities have reported the breach so far. Data breaches at business associates often affect multiple HIPAA-covered entities.

HIPAA 133

HIPAA Ransomware Electronic Medical Records Compliance 133

Compliancy Group

JANUARY 25, 2023

Make Sure You’re HIPAA Compliant HIPAA compliance protects you against breaches. Protect your business by becoming HIPAA compliant today! Become HIPAA Compliant × Get HIPAA Compliant! Lee credited HIPAA rules and regulations as the reason for more transparency in healthcare breach reporting.

HIPAA 119

HIPAA Electronic Medical Records Due Diligence Compliance 119

HIPAA Journal

JUNE 13, 2022

YRMC said the files exfiltrated from its systems included names, Social Security numbers, health insurance information, and limited medical information. YRMC said its electronic medical record system was not accessed. No ransomware threat group appears to have claimed responsibility for the attack.

Ransomware 135

Ransomware Electronic Medical Records HIPAA Health Insurance 135

Compliancy Group

NOVEMBER 1, 2024

Federal healthcare compliance involves following regulations that cover various aspects of healthcare delivery, including treatments, prescribing medications, maintaining electronic medical records (EMRs), and protecting communication technologies from cyber threats and attacks.

Compliance 52

Compliance HIPAA Electronic Medical Records Fraud 52

HIPAA Journal

JUNE 19, 2023

Between October 2019 and December 2019, Kaiser Permanente sent 337,755 mailings to enrollees of its health plan; however, an error updating its electronic medical record system resulted in some mailings being sent to outdated addresses.

Electronic Medical Records 106

Electronic Medical Records HIPAA Health Insurance 106

HIPAA Journal

JUNE 9, 2022

No Social Security numbers or financial information were viewed or stolen, and OMC systems and electronic medical records were unaffected. The post Data Breaches Reported by Aesto Health and Motion Picture Industry Health Plan appeared first on HIPAA Journal.

Electronic Medical Records 138

Electronic Medical Records HIPAA 138

HIPAA Journal

FEBRUARY 16, 2022

The investigation confirmed its electronic medical record system and other clinical systems were not compromised in the attack; however, on January 13, 2022, Philadelphia FIGHT discovered the attacker had accessed non-clinical systems that housed files containing the protected health information of around 15,000 patients.

Electronic Medical Records 125

Electronic Medical Records Health Insurance Licensing HIPAA 125

HIPAA Journal

MARCH 17, 2022

Duncan Regional Hospital said the hackers did not gain access to its electronic medical record system but did access parts of the network where files containing patient data were stored. The post Central Indiana Orthopedics & Duncan Regional Hospital Report 80K-Record Data Breaches appeared first on HIPAA Journal.

Hospitals 132

Hospitals Electronic Medical Records HIPAA 132

Compliancy Group

MARCH 31, 2023

Electronic medical records (EMR) have become the norm as the healthcare industry continues to digitize. However, sharing medical records electronically comes with risks, primarily if the records are not handled securely. Sending medical records via email also poses a risk to HIPAA compliance.

HIPAA 52

HIPAA Electronic Medical Records Compliance Doctors 52

Compliancy Group

FEBRUARY 28, 2025

In the post-COVID world, many healthcare organizations have ramped up their telehealth services and use of electronic medical records (EMRs). Provide annual training to employees on HIPAA and other regulatory requirements. Use encryption to make PHI unreadable to unauthorized users.

Ransomware 52

Ransomware Compliance COVID-19 HIPAA 52

HIPAA Journal

APRIL 5, 2023

Montgomery General Hospital engaged a third-party security firm to assist with the investigation to determine the extent of the breach and has confirmed that its cloud-based electronic medical record system was not affected.

Ransomware 103

Ransomware Hospitals Electronic Medical Records HIPAA 103

HIPAA Journal

MARCH 16, 2022

Between 2012 and 2019, CHS submitted claims for reimbursement of $486,000 under its contract but did not disclose that it had failed to consistently store medical records in a secure, HIPAA-compliant electronic medical record (EMR) system.

Fraud 123

Fraud Electronic Medical Records Governance HIPAA 123

Healthcare IT Today

NOVEMBER 4, 2024

He has led digital transformations for healthcare and other industries by implementing a cloud-based, HIPAA-compliant platform that centralized business intelligence, streamlined billing, and automated FP&A processes.

Electronic Medical Records 119

Electronic Medical Records HIPAA Governance 119

HIPAA Journal

MARCH 9, 2022

Over 500,000 individuals have been affected by cyberattacks on Norwood Clinic, PracticeMax, Central Indiana Orthopedics, and an unauthorized electronic medical record incident at Ascension Michigan. The post PHI of Over 500,000 Individuals Potentially Compromised in 4 Security Incidents appeared first on HIPAA Journal.

Electronic Medical Records 131

Electronic Medical Records Health Insurance Ransomware HIPAA 131

HIPAA Journal

MARCH 30, 2022

According to Databreaches.net, Suncrypt claims to have stolen more than 350 GB of data prior to encrypting files, including patients’ electronic medical records and financial documents. The post Law Enforcement Health Benefits and Oklahoma City Indian Clinic Suffer Ransomware Attacks appeared first on HIPAA Journal.

Ransomware 142

Ransomware Electronic Medical Records HIPAA Licensing 142

HIPAA Journal

MARCH 14, 2022

CRMC said at this stage of the investigation it does not appear that the attackers gained access to its electronic medical record database; however, the files accessed or potentially accessed by the attackers included information such as patient names, addresses, birth dates, medical information, and health insurance information.

Electronic Medical Records 142

Electronic Medical Records Health Insurance HIPAA Licensing 142

HIPAA Journal

APRIL 15, 2022

The lawsuit also alleges SuperCare Health failed to adhere to the security guidelines and standards of the National Institute of Standards and Technology, Federal Trade Commission, and Health Insurance Portability and Accountability Act (HIPAA), and violated state laws.

Electronic Medical Records 124

Electronic Medical Records HIPAA Health Insurance Fraud 124

HIT Consultant

APRIL 5, 2023

Patientory and Neith are both powered by cutting-edge technology and built atop the PTOYMatrix, Patientory’s own private blockchain network which raised over $7M in a token launch and now represents 95% of electronic medical record data in the US. What You Should Know: Patientory Inc. ,

Electronic Medical Records 98

Electronic Medical Records Governance HIPAA Hospitals 98

HIPAA Journal

JULY 7, 2022

healthcare and public health sector and have been encrypting servers that support electronic medical record systems and diagnostic, imaging, and intranet services. The post Feds Warn of Threat of Maui Ransomware Attacks By North Korean State-Sponsored Hackers appeared first on HIPAA Journal.

Ransomware 145

Ransomware Public Health Electronic Medical Records HIPAA 145

HIPAA Journal

AUGUST 31, 2022

The attackers deleted electronic medical records from June 28, 2021, to July 15, 2022, and while backups of those records had been made, the backups were also deleted so the information in those records has been lost. The unauthorized access was blocked on July 16.

Electronic Medical Records 124

Electronic Medical Records Ransomware HIPAA Health Insurance 124

HIPAA Journal

DECEMBER 1, 2022

The New York Post reports that the cyberattack has prevented hospital staff from accessing the electronic medical record system, so patient information has been recorded using pen and paper while the hospitals operate under emergency procedures. Notification letters were sent to affected patients on November 23, 2022.

Electronic Medical Records 111

Electronic Medical Records Hospitals Health Insurance HIPAA 111

HIPAA Journal

JULY 25, 2022

Web applications have grown in popularity in healthcare in recent years and are used for patient portals, electronic medical record systems, scheduling appointments, accessing test results, patient monitoring, online pharmacies, dental CAD systems, inventory management, and more.

Electronic Medical Records 145

Electronic Medical Records Ransomware COVID-19 HIPAA 145

American Medical Compliance

APRIL 24, 2024

This post introduces our comprehensive cybersecurity and HIPAA compliance training designed for healthcare personnel. What you will learn: HIPAA regulations Covered entities Administrative areas Breaches The HITECH Act Details Course length: 30 minutes. To become certified, please visit us at: American Medical Compliance (AMC).

HIPAA 52

HIPAA Electronic Medical Records Compliance Health Insurance 52

HIPAA Journal

JULY 4, 2024

Gaia Software Gaia Software, a provider of electronic medical record and billing management software services to Americare Renal Center, has mailed notification letters to patients whose protected health information was compromised in a February 2024 cyberattack.

Electronic Medical Records 120

Electronic Medical Records Health Insurance Ransomware Fraud 120

HIT Consultant

AUGUST 23, 2022

These solutions also provide HIPAA compliance – a growing topic of importance as telehealth and virtual care open even more access points to a user’s digital identity. HIPAA encourages the use of electronic medical records and includes standards for protecting PHI. In the U.S.,

Electronic Medical Records 98

Electronic Medical Records HIPAA Compliance COVID-19 98

HIPAA Journal

DECEMBER 9, 2022

The forensic investigation concluded on October 21, 2021, and revealed files on the network that contained patient data had been accessed in the attack, but its electronic medical record system was unaffected. That review confirmed only legacy patient data was involved.

Ransomware 103

Ransomware Electronic Medical Records HIPAA Hospitals 103

HIPAA Journal

MARCH 6, 2023

The notification letter lacks an explanation of why it took 18 months from the date of discovery of the breach for notification letters to be sent when the HIPAA breach notification rule requires notifications to be issued within 60 days or when the breach occurred.

Electronic Medical Records 101

Electronic Medical Records HIPAA Licensing Nurses 101

MedTrainer

MARCH 8, 2024

The Health Insurance Portability and Accountability Act (HIPAA) stands as a pillar of modern healthcare, offering a framework for safeguarding sensitive patient data. So, “what is HIPAA compliance in healthcare?” With ever-growing data breaches, HIPAA compliance is more crucial than ever. Anthem Inc.

HIPAA 52

HIPAA Compliance Electronic Medical Records Health Insurance 52