A recent study by the U.S. Government Accountability Office showed that patients still face confusion, high fees, and delays in getting access to..
We spend significant time discussing important items to do and things to consider in securing Protected Health Information (“PHI”). This assumes one..
One of the most overlooked but critical aspects of HIPAA compliance is medical equipment management and decommissioning equipment and media that..
Effective access control is a fundamental part of securing Protected Health Information (“PHI”). Access control is essentially giving access when and..
A recent survey indicated some interesting trends in ransomware attacks against small-to-medium size businesses (“SMBs”). According to the survey of..
Transferring PHI without an executed Business Associate Agreement ("BAA") has become a point of intense focus for federal regulators, and one from..
OCR has focused so much on risk analysis that there is a common misperception in the industry that a risk analysis is the primary task needed to be..
The proper destruction of electronic Protected Health Information (“ePHI”) is often overlooked and, if done improperly, can lead to impermissible..
Recent events indicate what we have long suspected; attackers often target the same organizations again after a successful attack. This exact scenario..