The inappropriate use and disclosure of patient information for marketing purposes by an insurer in Tennessee offers a reminder of the importance of complying with HIPAA's marketing-related provisions.
Healthcare organizations looking for help building an integrated approach to privacy and security compliance will soon have a new tool available. Find out the details about an updated framework from HITRUST.
A former senior adviser at the HHS Office for Civil Rights offers his predictions about OCR's HIPAA enforcement and regulatory activities for the year ahead in the wake of the office's leadership changes.
For the second time in less than a month, the Massachusetts attorney general has fined a hospital for a data breach - this time Boston Children's Hospital. Learn why experts expect to see more state and federal breach sanctions in 2015.
The fiscal 2015 federal budget provides two agencies responsible for health information security and privacy activities with flat funding. Find out what plans are on hold, and why Congress wants greater scrutiny of EHR system interoperability.
HealthcareInfoSecurity launches its fourth annual survey to measure progress toward ensuring the privacy and security of healthcare information as more records are digitized and shared, and as more cyberthreats emerge.
Federal regulators are sending a powerful message about the importance of applying software patches by slapping an Alaska mental health services providers with a $150,000 HIPAA sanction. Learn what's included in the corrective action plan.
It's time to consider amending the HIPAA Privacy Rule to enable the sharing of certain research data, without patients' authorization, to help improve the quality of care, contends Douglas Fridsma, M.D., a former federal health IT leader.
A government watchdog has begun auditing payments by state Medicaid agencies to hospitals participating in the HITECH Act electronic health record incentive program. Find out about plans for other HITECH audits, including scrutiny of security.
An ongoing legal dispute between the Texas Health and Human Services Commission and its former contractor, Xerox, has led the state agency to report a breach it claims affected 2 million individuals. Learn what both sides have to say about the case.
A Connecticut Supreme Court ruling paving the way for a case involving accusations of negligence stemming from an alleged violation of HIPAA privacy standards could potentially have an impact on data breach cases, the plaintiff's attorney says.