Did you know that, as of January 2017, there have been more than 1,800 sizeable security breaches of healthcare information? Sizeable means that each of these 1,800 breaches disclosed the patient information of more than 500 people at a time.…
Social media is a reality of doing business today. For healthcare organizations, this raises tricky privacy and compliance issues.
Concluding this series… Your state’s privacy and breach notification statutes may differ from HIPAA regulations.
After a data breach, everything you have done, everything you have discovered, and everything you have reported must be documented.
In Part One of a planned series of articles to look at Incident Response best practices, we start by discussing who is required to report a security incident to regulatory authorities, government agencies, or consumers/patients.
OCR announced this week that a second round of HIPAA Audits has finally begun. Even if you don’t face an audit, you are likely to find yourself facing off with security and compliance challenges.
Compliance begins with risk assessment. Security ends with incident response. And peace of mind requires reliable intelligence.
When your sales team and account managers can speak to your company’s compliance efforts and data security, prospects are reassured that your organization values security as much as they do.
An inadequate or infrequent risk assessments can lead to security vulnerabilities or compliance troubles. To protect your company or organization, be sure your security risk assessment hits the bullseye.
Executives face a constant battle of priorities. You must weight expense and effort against risk and benefit. Understand the business case for proactive IT security and compliance as a top priority.