HIPAA Journal

JULY 15, 2023

We have compiled these HIPAA Compliance Guidelines because HIPAA rules and regulations can be very confusing for healthcare professionals tasked with ensuring HIPAA compliance at their organization. Please use the form on this page to arrange to receive a free copy of the HIPAA Guidelines Checklist.

HIPAA 98

HIPAA Compliance Compliance Officers Licensing 98

HIPAA Journal

JANUARY 1, 2023

A limited data set under HIPAA is a set of identifiable healthcare information that the HIPAA Privacy Rule permits covered entities to share with certain entities for research purposes, public health activities, and healthcare operations without obtaining prior authorization from patients, if certain conditions are met.

HIPAA 98

HIPAA Licensing Public Health Compliance 98

Healthcare IT News - Telehealth

MARCH 18, 2020

The HHS Office for Civil Rights announced on Tuesday that during the coronavirus pandemic it will use discretion when enforcing HIPAA-compliance for telehealth communications tools. " Wherever possible, providers should use telehealth tools from vendors that are HIPAA compliant and will enter into business-associate agreements, said OCR.

COVID-19 217

COVID-19 HIPAA Nursing Homes Medicare 217

HIPAA Journal

MARCH 28, 2025

The post Beacon Health System Affected by Two Business Associate Email Breaches appeared first on The HIPAA Journal. Restorix sent notification letters to the affected patients on December 18, 2024. Neither incident is currently shown on the HHS Office for Civil Rights breach portal, so it is unclear how many patients have been affected.

Licensing 61

Licensing Health Insurance HIPAA Medicaid 61

Healthcare It News

SEPTEMBER 17, 2024

Driver’s license or state-issued identification number. Information that may have been accessed in the social engineering attack includes: First and/or last name. Street address. Email address. Social Security number. Date of birth. Medical record number. Bank or financial account numbers or information. Treatment/diagnosis.

Electronic Medical Records 306

Electronic Medical Records Health Insurance Payment Systems Licensing 306

HIPAA Journal

JANUARY 10, 2024

Stripe is not HIPAA compliant and – other than its payment processing services – should not be used by covered entities and business associates to create, collect, store, or transmit Protected Health Information (PHI). Is Stripe HIPAA Compliant? Stripe complies with multiple US and International data privacy regulations (i.e.,

HIPAA 94

HIPAA US Department of Health and Human Services Fraud Telemedicine 94

HIPAA Journal

JUNE 5, 2023

If your HIPAA-covered organization is planning to use Microsoft Teams to collect, store, share, or transmit electronic PHI, it is important to know how to make Microsoft Teams HIPAA compliant. How to Make Microsoft Teams HIPAA Compliant No software is HIPAA compliant.

HIPAA 89

HIPAA Due Diligence Compliance Licensing 89

HIPAA Journal

NOVEMBER 16, 2022

The review of the compromised email accounts confirmed they contain information such as names, addresses, dates of birth, driver’s license numbers, state identification card numbers, financial account numbers, usernames and passwords, payment card information, medical histories, and health insurance information.

HIPAA 109

HIPAA Licensing Health Insurance Fraud 109

HIPAA Journal

MAY 2, 2022

6 data breaches have recently been reported by HIPAA-regulated entities that have collectively resulted in the exposure and potential theft of the protected health information of tens of thousands of individuals. The post 6 HIPAA-Regulated Entities Report Email Account Breaches and the Exposure of PHI appeared first on HIPAA Journal.

HIPAA 110

HIPAA Health Insurance Licensing Hospitals 110

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. The Biggest HIPAA Breaches of 2022. The 12 biggest HIPAA breaches of 2022 affected almost 22.66 million patients and health plan members.

HIPAA 103

HIPAA Ransomware Health Insurance Compliance 103

HIPAA Journal

SEPTEMBER 12, 2023

Schneck Medical Center has agreed to pay a penalty of $250,000 to resolve alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) and state laws and will implement additional safeguards to prevent further data breaches.

HIPAA 102

HIPAA Ransomware Health Insurance Fraud 102

HIPAA Journal

JANUARY 2, 2023

The settlements pursued by the Department of Health and Human Services’ Office for Civil Rights (OCR) are for egregious violations of HIPAA Rules. Settlements are also pursued to highlight common HIPAA violations to raise awareness of the need to comply with specific aspects of HIPAA Rules. Are Data Breaches HIPAA Violations?

HIPAA 106

HIPAA Compliance Hospitals Medicare 106

Healthcare IT Today

JANUARY 18, 2024

Shippy also reassures viewers that they can get HIPAA-compliant cloud repositories and that “we walk them through” how to create a secure network. She also believes that everybody, urban and rural, can use the cloud, and that AWS tries to “make sure they have the resources” to do so.

Licensing 118

Licensing HIPAA Hospitals 118

HIPAA Journal

DECEMBER 30, 2022

Avalon Healthcare has agreed to settle alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) and state laws with the Oregon and Utah Attorneys General that were uncovered during an investigation of a 2019 breach of the personal and protected health information of 14,500 of its employees and patients.

HIPAA 98

HIPAA Compliance Compliance Officers Licensing 98

HIPAA Journal

MARCH 11, 2025

The file review confirmed that the types of data compromised in the cyberattack included names, addresses, dates of birth, Social Security numbers, drivers license numbers, medical information, and health insurance information. The post Cyberattack on Sunflower Medical Group Affects 221,000 Patients appeared first on The HIPAA Journal.

Department of Veterans Affairs 81

Department of Veterans Affairs Licensing Ransomware Fraud 81

HIPAA Journal

AUGUST 10, 2023

The Ottumwa Fire Department in Iowa has recently fired employees for alleged violations of the HIPAA Rules and other misconduct. The post Ottumwa Fire Department Fires Employees for Misconduct and HIPAA Violations appeared first on HIPAA Journal. The information involved varied from individual to individual.

HIPAA 95

HIPAA Ransomware Licensing Health Insurance 95

HIPAA Journal

MARCH 25, 2025

A minority of the affected individuals had their Social Security numbers and/or drivers license numbers exposed.Individual notification letters are now being mailed to the affected individuals, and complimentary credit monitoring and identity theft protection services have been offered to individuals whose Social Security numbers were involved.

Ransomware 66

Ransomware HIPAA Licensing Health Insurance 66

Healthcare It News

SEPTEMBER 21, 2023

" Liederman noted that earlier in his career – pre-HIPAA – he worked at an academic medical facility where access to lab results and radiology reports was wide open. " To safely address insider snooping you have to record all the views and actions, which HIPAA requires anyway.

Governance 338

Governance HIPAA Ransomware Licensing 338

Healthcare It News

OCTOBER 12, 2021

"Both vendors are HIPAA-compliant and work with healthcare providers nationally. "Some differences with each vendor exist in terms of how the links are sent and the availability or need for a smartphone app to conduct the visit," she continued. " USING FCC AWARD FUNDS.

COVID-19 352

COVID-19 Licensing Patient Satisfaction Doctors 352

HIPAA Journal

APRIL 1, 2025

Million Data Breach Settlement appeared first on The HIPAA Journal. Legal action was taken against Azura Vascular Care over the data breach, with the plaintiffs alleging the defendants failed to implement reasonable and appropriate cybersecurity measures to prevent unauthorized access to its network and sensitive patient data.

Licensing 52

Licensing HIPAA Compliance 52

Verisys

MARCH 6, 2025

Department of Health and Human Services (HHS) Enforces regulations like the Health Insurance Portability and Accountability Act (HIPAA) to ensure patient data privacy and security. In another case, Californias Providence Medical Institute was fined $240,000 for violating HIPAA Security Rules, which led to a data breach. Sources: ADA.

Compliance 52

Compliance HIPAA Licensing Governance 52

HIPAA Journal

APRIL 2, 2025

The post SimonMed Imaging Confirms January 2025 Cyberattack appeared first on The HIPAA Journal. At least one class action lawsuit has already been filed against SimonMed over the incident.At present, no data breach is displayed on the HHS Office for Civil Rights breach portal, so it is unclear how many individuals have been affected.

Ransomware 52

Ransomware Licensing HIPAA Health Insurance 52

Healthcare IT News - Telehealth

SEPTEMBER 16, 2022

Clinicians create a virtual mental health appointment using Zoom's secure, HIPAA-compliant video technology, share that link with the patient and launch the online meeting directly from the Osmind patient app. "As clinicians, we have a professional obligation to only use telehealth platforms that are HIPAA-compliant," she added.

COVID-19 166

COVID-19 HIPAA Telemedicine Licensing 166

Bill of Health

JUNE 5, 2023

medical licensing exam , diagnose illnesses , and even outshine human doctors on measures of perceived empathy , raising many questions about how AI will reshape health care as we know it. In the field of medicine, ChatGPT already has been reported to ace the U.S. But what happens when AI gets things wrong?

Malpractice 213

Malpractice FDA HIPAA Doctors 213

Healthcare IT Today

MARCH 26, 2025

As the sector adapts, telehealth providers must navigate new compliance challenges, particularly regarding controlled substances, data privacy, and multi-state licensing. While telehealth is federally recognized, each state maintains its own set of rules governing online prescribing , provider licensing, and telehealth modalities.

FDA 52

FDA Compliance Licensing Fraud 52

HIPAA Journal

APRIL 11, 2025

Additional identifiers such as Social Security Numbers, driver’s license/state ID numbers, passport numbers, dates of birth, demographic data, student ID numbers, and other government identifiers. Million People appeared first on The HIPAA Journal. The post Laboratory Services Cooperative Breach Impacts 1.6

Ransomware 58

Ransomware Fraud HIPAA Licensing 58

HIPAA Journal

MARCH 14, 2025

states and offers a mobile app platform that connects healthcare facilities with healthcare workers such as Licensed Practical Nurses (LPNs), Registered Nurses (RNs), and Certified Nursing Assistants (CNAs). The post Healthcare Staff Database with 86,000 Records Exposed Online appeared first on The HIPAA Journal.

Nurses 58

Nurses Licensing HIPAA 58

Healthcare IT News - Telehealth

JUNE 3, 2020

He noted the moves by the Centers for Medicare and Medicaid Services to reimburse providers for services and allow telehealth care between states , and the relaxed HIPAA regulations around technology use , as important contributors to the uptick in telehealth availability.

Telemedicine 213

Telemedicine COVID-19 HIPAA Medicare 213

Medisys Compliance

JANUARY 15, 2025

Reduced Overhead Costs: Outsourcing can help reduce overhead costs associated with maintaining an in-house billing department, such as salaries, benefits, software licenses, and training. HIPAA Compliance: Reputable billing companies adhere to strict HIPAA compliance standards, ensuring the security and confidentiality of patient data.

Medical Billing Services 59

Medical Billing Services Medical Billing Medical Billing Outsourcing Patient Satisfaction 59

HIPAA Journal

MARCH 18, 2022

Rather than face the financial penalties, the hospital immediately terminated its hospital license in 2004. The post Eastern Ozarks Regional Health Sued by Arkansas AG for Failure to Secure Patient Data appeared first on HIPAA Journal. 6 years later, the property was transferred to the state after the owners failed to pay their taxes.

Licensing 124

Licensing HIPAA Hospitals Health Insurance 124

Healthcare IT News - Telehealth

MARCH 15, 2021

She believes HIPAA requirements for telehealth platforms will likely go back into effect, although the Office of Civil Rights is considering some changes. Alleva does have a few predictions, however. "Even if you don't have a physical location, you need to be thinking about where you're providing services."

Licensing 215

Licensing HIPAA Hospitals 215

Healthcare IT News - Telehealth

JUNE 27, 2023

They said customers who decline HIPAA consent on the website are prevented from completing their patient registration with Amazon Clinic and are redirected to a third-party provider information page.

HIPAA 170

HIPAA Telemedicine Licensing 170

Compliancy Group

JANUARY 23, 2025

See How Our Software Can Help With HIPAA Risk Assessments OSHA Policies & Procedures Training Incident Response The post 2024 DOJ False Claims Act Settlements in Healthcare Recover $1.67B appeared first on Compliancy Group. RDx Bioscience Inc.: Find out how we can help you combat FWA in your organization!

Fraud 98

Fraud Medicare Medicare Regulatory Compliance 98

HIPAA Journal

FEBRUARY 16, 2022

The system contained patients’ names, birth dates, insurance card numbers, driver’s license numbers, and copies of patients’ insurance cards and driver’s licenses. The post Patient Data Compromised in Ransomware Attacks on Family Christian Health Center & Jackson County Hospital appeared first on HIPAA Journal.

Ransomware 130

Ransomware Hospitals Licensing HIPAA 130

Healthcare IT News - Telehealth

AUGUST 25, 2021

There are several ways in which regulatory relaxations have allowed telemedicine to soar during the pandemic: HIPAA flexibility, telemedicine waivers through CMS, cost-sharing, and billing and reimbursement changes. It would be a shame for that to dissolve. The general practice of medicine is not defined by state lines.

Telemedicine 216

Telemedicine HIPAA Licensing Health Outcomes 216

Medisys Compliance

DECEMBER 24, 2024

Medicare Reimbursement Medicare covers teletherapy under specific guidelines: Eligible Providers: Includes licensed clinical social workers (LCSWs), clinical psychologists, and other licensed professionals. HIPAA-compliant Zoom) and any technical difficulties. Telehealth Platform: Note the telehealth platform used (e.g.,

Medical Billing Outsourcing 59

Medical Billing Outsourcing Medicaid Medicaid Medical Billing 59

Healthcare IT Today

OCTOBER 25, 2023

The PII includes the name, date of birth, contact information (such as the address, telephone, and email), financial information (bank information), and government identifier (social security, driver’s license #). So, HIPAA may not apply. The patient is the consumer of the solution provided by the vendor.

HIPAA 119

HIPAA Licensing Doctors Nurses 119