HIPAA and Licensing - Health Care Compliance Brief

Our “Preconceived” Notions of HIPAA

Bill of Health

MARCH 9, 2024

The film Preconceived , premiering at SXSW this week, shines a bright light on anti-abortion “Crisis Pregnancy Centers” (CPCs), including their disturbing take on the Health Insurance Portability and Accountability Act (HIPAA). HIPAA takes center stage near the end of the film. Is Stanton a HIPAA-covered entity?

HIPAA

HIPAA Licensing Health Insurance Compliance

How Long Does a HIPAA Violation Stay on Your Record?

Compliancy Group

OCTOBER 14, 2024

There’s no room for chance or error when it comes to the Health Insurance Portability and Accountability Act (HIPAA). We discuss how long a HIPAA violation stays on one’s record, other consequences of HIPAA non-compliance, and how compliance software can help your organization prevent these costly mistakes.

HIPAA

HIPAA Compliance Compliance Officers Licensing

When HIPAA Becomes Criminal

Healthcare IT Today

DECEMBER 20, 2022

Five former employees of Methodist Hospital in Memphis, TN, including a recently-licensed Registered Nurse, were indicted by a federal grand jury for allegedly selling medical information about car accident victims to personal injury attorneys and chiropractors. Harvey could receive up to 70 years in prison, pay a fine of $1.75

HIPAA

HIPAA Nurses Licensing Compliance

Webinars

Fertility Benefits Playbook: How HR Leaders Are Delivering Value in 2025

MORE WEBINARS

HIPAA Compliance Guidelines

HIPAA Journal

JULY 15, 2023

We have compiled these HIPAA Compliance Guidelines because HIPAA rules and regulations can be very confusing for healthcare professionals tasked with ensuring HIPAA compliance at their organization. Please use the form on this page to arrange to receive a free copy of the HIPAA Guidelines Checklist.

HIPAA

HIPAA Compliance Compliance Officers Licensing

Is Stripe HIPAA Compliant?

HIPAA Journal

JANUARY 10, 2024

Stripe is not HIPAA compliant and – other than its payment processing services – should not be used by covered entities and business associates to create, collect, store, or transmit Protected Health Information (PHI). Is Stripe HIPAA Compliant? Stripe complies with multiple US and International data privacy regulations (i.e.,

HIPAA

HIPAA US Department of Health and Human Services Fraud Telemedicine

Will a HIPAA Violation Show Up on a Background Check?

HIPAA Journal

MAY 19, 2023

Whether or not a HIPAA violation will show up on a background check depends on the nature of the violation, the consequences of the violation, and the motive for the violation. While it is currently rare for a HIPAA violation to show up on a background check, this may change due to a proposed update to the Privacy Rule.

HIPAA

HIPAA Licensing Compliance

Is Microsoft Teams HIPAA Compliant?

HIPAA Journal

JUNE 5, 2023

If your HIPAA-covered organization is planning to use Microsoft Teams to collect, store, share, or transmit electronic PHI, it is important to know how to make Microsoft Teams HIPAA compliant. How to Make Microsoft Teams HIPAA Compliant No software is HIPAA compliant.

HIPAA

HIPAA Due Diligence Compliance Licensing

What is a Limited Data Set Under HIPAA?

HIPAA Journal

JANUARY 1, 2023

A limited data set under HIPAA is a set of identifiable healthcare information that the HIPAA Privacy Rule permits covered entities to share with certain entities for research purposes, public health activities, and healthcare operations without obtaining prior authorization from patients, if certain conditions are met.

HIPAA

HIPAA Licensing Public Health Compliance

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

HIPAA Journal

SEPTEMBER 12, 2023

Schneck Medical Center has agreed to pay a penalty of $250,000 to resolve alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) and state laws and will implement additional safeguards to prevent further data breaches.

HIPAA

HIPAA Ransomware Health Insurance Fraud

Pittsburgh Counselor Fined $15,000 for HIPAA Right of Access Violation

HIPAA Journal

MAY 9, 2023

The HHS’ Office for Civil Rights has announced its 44th enforcement action under its HIPAA Right of Access initiative with a $15,000 financial penalty for David Mente, MA, LPC, a licensed counselor that provides psychotherapy services in Pittsburgh, PA. That led to the father filing a second complaint with OCR. 164.524(3).

HIPAA

HIPAA Licensing Compliance

Tips for HIPAA and OSHA Training for Dental Offices

Compliancy Group

FEBRUARY 23, 2022

Keeping your dental office compliant with HIPAA and OSHA regulations is one more thing to juggle. HIPAA and OSHA training for dental offices is an essential part of compliance. Be able to prove the HIPAA and OSHA training was done. Know the most common HIPAA and OSHA citations and violations. These include: HIPAA.

HIPAA

HIPAA Compliance Licensing

What is HIPAA Enforcement Discretion?

HIPAA Journal

JUNE 26, 2023

HIPAA enforcement discretion occurs when the Secretary for Health and Human Services (HHS) announces the Department will exercise discretion in the enforcement of HIPAA Rules. Typically, Notices of Enforcement Discretion last between 72 hours and 60 days, are state or region-specific and apply to specific provisions of the HIPAA Rules.

HIPAA

HIPAA COVID-19 COVID-19 Vaccine Public Health

Amazon Web Services (AWS) Helps Clinicians Work at the Top of Their Licenses

Healthcare IT Today

JANUARY 18, 2024

Shippy also reassures viewers that they can get HIPAA-compliant cloud repositories and that “we walk them through” how to create a secure network. She also believes that everybody, urban and rural, can use the cloud, and that AWS tries to “make sure they have the resources” to do so.

Licensing

Licensing HIPAA Hospitals

Editorial: Lessons from Biggest HIPAA Breaches of 2022

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. The Biggest HIPAA Breaches of 2022. The 12 biggest HIPAA breaches of 2022 affected almost 22.66 million patients and health plan members.

HIPAA

HIPAA Ransomware Health Insurance Compliance

Ottumwa Fire Department Fires Employees for Misconduct and HIPAA Violations

HIPAA Journal

AUGUST 10, 2023

The Ottumwa Fire Department in Iowa has recently fired employees for alleged violations of the HIPAA Rules and other misconduct. The post Ottumwa Fire Department Fires Employees for Misconduct and HIPAA Violations appeared first on HIPAA Journal. The information involved varied from individual to individual.

HIPAA

HIPAA Ransomware Licensing Health Insurance

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

HIPAA Journal

NOVEMBER 16, 2022

The review of the compromised email accounts confirmed they contain information such as names, addresses, dates of birth, driver’s license numbers, state identification card numbers, financial account numbers, usernames and passwords, payment card information, medical histories, and health insurance information.

HIPAA

HIPAA Licensing Health Insurance Fraud

Polygon Psychology Practice Confirmed as HIPAA Compliant

HIPAA Journal

NOVEMBER 1, 2022

After completing that process, Compliancy Group’s HIPAA subject matter experts assessed Polygon’s good faith effort toward HIPA compliance and awarded the practice the HIPAA Seal of Compliance. One could say that HIPAA’s most significant benefits are for patients, but that would be missing an important nuance,” said Dindin.

HIPAA

HIPAA Compliance Licensing

Anti-Social Media – How a Post Becomes a HIPAA Violation

Compliancy Group

JANUARY 13, 2023

But for those in the healthcare industry, sharing the wrong thing could result in a HIPAA violation. Here are a few examples of how a seemingly innocent social media post can go wrong and result in a HIPAA violation. Social Media and HIPAA – The Basics. PHI is the focus of the HIPAA Privacy Rule, which demands limited access.

HIPAA

HIPAA Licensing Doctors Nurses

Is Ivy Pay HIPAA Compliant?

Compliancy Group

AUGUST 17, 2022

Ivy Pay is an online payment processor that serves only licensed therapists. Healthcare providers can only use HIPAA compliant payment processors to receive payments from patients. So, is Ivy Pay HIPAA compliant? Let’s Simplify Compliance Compliancy Group can helps therapists become HIPAA compliant. Learn More! ×

HIPAA

HIPAA Compliance Licensing

Avalon Healthcare Settles HIPAA Case with Oregon and Utah State AGs and Pays $200,000 Penalty

HIPAA Journal

DECEMBER 30, 2022

Avalon Healthcare has agreed to settle alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) and state laws with the Oregon and Utah Attorneys General that were uncovered during an investigation of a 2019 breach of the personal and protected health information of 14,500 of its employees and patients.

HIPAA

HIPAA Compliance Compliance Officers Licensing

Protected Health Information (PHI): Everything You Need to Know about HIPAA and PHI

Total HIPAA

MAY 23, 2022

The Health Insurance Portability and Accountability Act ( HIPAA ) is a 1996 federal law that regulates privacy standards in the healthcare sector. Since 1996, Congress has passed additional laws to adapt HIPAA in accordance with new technological advancements. Most HIPAA rules and regulations revolve around protecting PHI.

HIPAA

HIPAA Due Diligence Compliance Health Insurance

6 HIPAA-Regulated Entities Report Email Account Breaches and the Exposure of PHI

HIPAA Journal

MAY 2, 2022

6 data breaches have recently been reported by HIPAA-regulated entities that have collectively resulted in the exposure and potential theft of the protected health information of tens of thousands of individuals. The post 6 HIPAA-Regulated Entities Report Email Account Breaches and the Exposure of PHI appeared first on HIPAA Journal.

HIPAA

HIPAA Health Insurance Licensing Hospitals

Using a Virtual Private Network (VPN) vs. SSL/TLS in a HIPAA Environment

Total HIPAA

JULY 12, 2022

Many internet service providers offer SSL/TLS licenses for free or for less than $100/year. Also, if they won’t sign a BAA, they aren’t HIPAA compliant. Do you have updated HIPAA Policies and Procedures in place? Our HIPAA Prime™ program does all this and more! Stick with providers who collect as little data as possible.

HIPAA

HIPAA Compliance Licensing COVID-19

Implications of Noncompliance with HIPAA: What to Expect as a Healthcare Organization

Compliancy Group

APRIL 19, 2023

Wondering why your practice or organization should be HIPAA compliant? In the United States, the Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996 to regulate the handling and protecting confidential medical information. million per year for each violation of HIPAA.

HIPAA

HIPAA Compliance Licensing Health Insurance

Atrium Health responds to new social engineering attack

Healthcare It News

SEPTEMBER 17, 2024

Driver’s license or state-issued identification number. Information that may have been accessed in the social engineering attack includes: First and/or last name. Street address. Email address. Social Security number. Date of birth. Medical record number. Bank or financial account numbers or information. Treatment/diagnosis.

Electronic Medical Records

Electronic Medical Records Health Insurance Payment Systems Licensing

California Dental Practice Pays $23,000 Settlement For Potential HIPAA Privacy Violations Involving Yelp Posts

The Health Law Firm Blog

APRIL 12, 2024

Board Certified by The Florida Bar in Health Law On December 14, 2022, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) settled with New Vision Dental (NVD) over a potential HIPAA Privacy violation. Indest III, J.D., The California-based dental practice paid $23,000 to OCR and [.]

HIPAA

HIPAA Licensing Health Insurance Compliance

Dental Practice Pays $23,000 For Potential HIPAA Privacy Violations Involving Yelp Posts

The Health Law Firm Blog

SEPTEMBER 11, 2023

Board Certified by The Florida Bar in Health Law On December 14, 2022, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) settled with New Vision Dental (NVD) over a potential HIPAA Privacy violation. Indest III, J.D., The California-based dental practice paid $23,000 to OCR and [.]

HIPAA

HIPAA Licensing Health Insurance Compliance

Pennsylvania’s Updated Breach Notification Law Requires Credit Monitoring Services for Breach Victims

HIPAA Journal

JULY 8, 2024

Credit monitoring services must be provided if a consumer reporting agency is required to be notified by law and if the breach involved an individual’s Social Security number, bank account number, driver’s license number, or state identification number.

Licensing

Licensing HIPAA Health Insurance Compliance

Security and Privacy Hurdles Plaguing AI-Driven Health Services

Healthcare IT Today

OCTOBER 25, 2023

The PII includes the name, date of birth, contact information (such as the address, telephone, and email), financial information (bank information), and government identifier (social security, driver’s license #). So, HIPAA may not apply. The patient is the consumer of the solution provided by the vendor.

HIPAA

HIPAA Licensing Doctors Nurses

Protected Health Information Stolen in HealthEquity SharePoint Breach

HIPAA Journal

JULY 5, 2024

No Social Security numbers, driver’s license numbers, or financial account information were accessed or downloaded. A limited number of patients also had their Social Security numbers and/or driver’s license numbers stolen.

Licensing

Licensing HIPAA Health Insurance

Most Popular HIPAA Compliant File Sharing Apps

Total HIPAA

JUNE 2, 2020

HIPAA compliant file sharing apps are necessary if your company is dealing with personal health data. Most importantly, all the products reviewed are HIPAA compliant file sharing applications. HIPAA compliant file sharing apps that we reviewed are following: Accellion Box Dropbox Egnyte FTP Today G Suite OneDrive ShareFile Syncplicity.

HIPAA

HIPAA Compliance Licensing Regulatory Compliance

BianLian Threat Group Claims Responsibility for Cyberattack on Tennessee Eye Clinic Network

HIPAA Journal

APRIL 25, 2024

OPMT said, “Even though it is not specifically required by HIPAA, we will offer identity theft protection services to all affected individuals; we feel that this is an important precaution to protect our patients.” The BianLian group has claimed responsibility for the attack.

Licensing

Licensing HIPAA Ransomware

California Dental Practice Pays $23,000 Settlement For Potential HIPAA Privacy Violations Involving Yelp Posts

The Health Law Firm Blog

JANUARY 17, 2023

Board Certified by The Florida Bar in Health Law On December 14, 2022, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) settled with New Vision Dental (NVD) over a potential HIPAA Privacy violation. Indest III, J.D., The California-based dental practice paid $23,000 to OCR and [.].

HIPAA

HIPAA Licensing Health Insurance Compliance

Insider Breaches Reported by Providence Mission Heritage Endocrinology & Samaritan Health Services

HIPAA Journal

JULY 5, 2024

The review confirmed that only names, State IDs, driver’s license numbers, and health insurance coverage information were accessed. The post Insider Breaches Reported by Providence Mission Heritage Endocrinology & Samaritan Health Services appeared first on The HIPAA Journal.

Licensing

Licensing HIPAA Health Insurance Hospitals

Email Breach Affects 22,000 Ambulatory Surgery Center of Westchester Patients

HIPAA Journal

JULY 5, 2024

The post Email Breach Affects 22,000 Ambulatory Surgery Center of Westchester Patients appeared first on The HIPAA Journal. The affected individuals were notified by mail on June 26, 2024. The total will be updated when the investigation has been completed.

Health Insurance

Health Insurance Licensing HIPAA

The Balance Between Promoting Data Sharing and Ensuring the Privacy and Security of Sensitive Health Information

Healthcare IT Today

OCTOBER 8, 2024

Diana Sonbay-Benli, VP & Chief Product Officer, Cognizant TriZetto Healthcare Products at Cognizant Since the advent of HIPAA, almost a career’s duration ago, we’ve focused on the safeguarding of data. HIPAA/HITECH rules have been utilized in sharing data between various entities.

US Department of Health and Human Services

US Department of Health and Human Services HIPAA Regulatory Compliance Public Health

November 8, 2023, Healthcare Data Breach Round-Up

HIPAA Journal

NOVEMBER 8, 2023

The compromised information included names, addresses, dates of birth, Social Security numbers, driver’s license numbers or state IDs, medical treatment information, and health insurance information. The post November 8, 2023, Healthcare Data Breach Round-Up appeared first on HIPAA Journal.

Ransomware

Ransomware Licensing Health Insurance HIPAA

Email Breaches Reported by SkinCure Oncology & the Wisconsin Department of Health Services

HIPAA Journal

JULY 4, 2024

A limited number of patients had their Social Security numbers, driver’s license numbers, financial account information, and/or credit card information exposed. The post Email Breaches Reported by SkinCure Oncology & the Wisconsin Department of Health Services appeared first on The HIPAA Journal. Central Time.

Medicaid

Medicaid Medicaid Fraud Licensing

Multiple Class Action Lawsuits Filed Against City of Hope National Medical Center Over Data Breach

HIPAA Journal

APRIL 25, 2024

The exposed and stolen data included contact information, Social Security numbers, driver’s license numbers, financial information, health insurance information, medical records, medical histories, diagnoses/conditions, and health insurance information. During that time, files containing patient data were exfiltrated from its network.

Fraud

Fraud Health Insurance HIPAA Licensing

The Importance of Staying Informed

AIHC

SEPTEMBER 25, 2024

There is value in learning from another organization’s lessons publicly posted by a government authority, such as the Department of Justice (DOJ), Centers for Medicare & Medicaid Services (CMS), the HIPAA enforcement agency, the Office of Civil Rights (OCR) or the Federal Bureau of Investigations (FBI).

Fraud

Fraud Compliance Compliance Officers Licensing

Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks

HIPAA Journal

APRIL 23, 2024

The review of the affected files was completed on February 7, 2024, and confirmed some or all of the following information was compromised: name, date of birth, Social Security number, driver’s license number, medical information, and/or health insurance information.

Ransomware

Ransomware Fraud Licensing HIPAA

NY AG Fines Medical Management Company $550,000 for Patch Management Failures

HIPAA Journal

MAY 24, 2023

Practicefirst’s investigation confirmed the threat actor exfiltrated approximately 79,000 files from its systems, which contained names, dates of birth, driver’s license numbers, Social Security numbers, diagnoses, medication information, and financial information. Practicefirst agreed to settle the alleged violations of HIPAA and state law.

HIPAA

HIPAA Ransomware Licensing Health Insurance

San Juan Regional Medical Center Settles Data Breach Lawsuit

HIPAA Journal

DECEMBER 2, 2022

While legal action was not taken over a HIPAA violation, the lawsuit alleged the lack of appropriate safeguards constituted a HIPAA violation. The post San Juan Regional Medical Center Settles Data Breach Lawsuit appeared first on HIPAA Journal. All claims must be submitted by February 8, 2023.

Licensing

Licensing HIPAA Ransomware Health Insurance

Vendor notebook: New AI tools to cut billing burdens, improve testing and more

Healthcare It News

MAY 12, 2023

"We're not only capitalizing on the capabilities of GPT, we're doing so in a highly secure, HIPAA-compliant manner through Microsoft Azure," he added. " Since launching its claims platform, a series of new capabilities, including prior authorizations and denials management, has been added.

HIPAA

HIPAA Medical Billing FDA Licensing

Our “Preconceived” Notions of HIPAA

How Long Does a HIPAA Violation Stay on Your Record?

Webinars

Trending Sources

When HIPAA Becomes Criminal

Webinars

HIPAA Compliance Guidelines

Is Stripe HIPAA Compliant?

Will a HIPAA Violation Show Up on a Background Check?

Is Microsoft Teams HIPAA Compliant?

What is a Limited Data Set Under HIPAA?

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

Pittsburgh Counselor Fined $15,000 for HIPAA Right of Access Violation

Tips for HIPAA and OSHA Training for Dental Offices

What is HIPAA Enforcement Discretion?

Amazon Web Services (AWS) Helps Clinicians Work at the Top of Their Licenses

Editorial: Lessons from Biggest HIPAA Breaches of 2022

Ottumwa Fire Department Fires Employees for Misconduct and HIPAA Violations

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

Polygon Psychology Practice Confirmed as HIPAA Compliant

Anti-Social Media – How a Post Becomes a HIPAA Violation

Is Ivy Pay HIPAA Compliant?

Avalon Healthcare Settles HIPAA Case with Oregon and Utah State AGs and Pays $200,000 Penalty

Protected Health Information (PHI): Everything You Need to Know about HIPAA and PHI

6 HIPAA-Regulated Entities Report Email Account Breaches and the Exposure of PHI

Using a Virtual Private Network (VPN) vs. SSL/TLS in a HIPAA Environment

Implications of Noncompliance with HIPAA: What to Expect as a Healthcare Organization

Atrium Health responds to new social engineering attack

California Dental Practice Pays $23,000 Settlement For Potential HIPAA Privacy Violations Involving Yelp Posts

Dental Practice Pays $23,000 For Potential HIPAA Privacy Violations Involving Yelp Posts

Pennsylvania’s Updated Breach Notification Law Requires Credit Monitoring Services for Breach Victims

Security and Privacy Hurdles Plaguing AI-Driven Health Services

Protected Health Information Stolen in HealthEquity SharePoint Breach

Most Popular HIPAA Compliant File Sharing Apps

BianLian Threat Group Claims Responsibility for Cyberattack on Tennessee Eye Clinic Network

California Dental Practice Pays $23,000 Settlement For Potential HIPAA Privacy Violations Involving Yelp Posts

Insider Breaches Reported by Providence Mission Heritage Endocrinology & Samaritan Health Services

Email Breach Affects 22,000 Ambulatory Surgery Center of Westchester Patients

The Balance Between Promoting Data Sharing and Ensuring the Privacy and Security of Sensitive Health Information

November 8, 2023, Healthcare Data Breach Round-Up

Email Breaches Reported by SkinCure Oncology & the Wisconsin Department of Health Services

Multiple Class Action Lawsuits Filed Against City of Hope National Medical Center Over Data Breach

The Importance of Staying Informed

Kisco Senior Living & Island Ambulatory Surgery Center Disclose Summer 2023 Cyberattacks

NY AG Fines Medical Management Company $550,000 for Patch Management Failures

San Juan Regional Medical Center Settles Data Breach Lawsuit

Vendor notebook: New AI tools to cut billing burdens, improve testing and more

Stay Connected