Important Government Warnings about Ransomware: HIPAA & HITECH Act Blog by Jonathan P. Tomes
You may think that I am going overboard with all my recent blogs about ransomware. But I’m not. It is that much of a problem. .. read more
Health and Human Services’ Changes to 42 C.F.R. Part 2: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Although the topic of this blog item is slightly off the topic of HIPAA, it is sufficiently related to HIPAA to merit analysis. 42 C.F.R. .. read more
HIPAA and Coronavirus 2—HHS Limited Waiver: HIPAA & HITECH Act Blog by Jonathan P. Tomes
As a followup to my March 2, 2020, blog post, HIPAA and Coronavirus (and certainly not in reaction to it), the U.S. Department of Health .. read more
Being a Small Practice Won’t Save You from a HIPAA Penalty: HIPAA & HITECH Act Blog by Jonathan P. Tomes
In the first enforcement action announced in 2020, the Department of Health and Human Services (“HHS”) has settled with Dr. Stephen A. Porter for $100,000 .. read more
Jon Tomes Will Be Presenting an All-Day, Live, and In-Person HIPAA Seminar in San Francisco in 3 Weeks: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Alice M. McCart, J.D.
If you will be in San Francisco about 3 weeks from now and need HIPAA compliance training, go to https://www.compliancekey.us/seminar-details?industryId=3&seminarid=36&speakerid=124 to sign up. The HIPAA .. read more
HHS Office for Civil Rights and the Department of Education Issue Updated Guidance on Sharing Student Health Records under HIPAA and FERPA: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Having had the good fortune to be a HIPAA consultant for several universities, I am quite aware of the confusion that could result from possibly .. read more
Are You Encrypting Your Laptops and Other Portable Devices? HIPAA & HITECH Act Blog by Jonathan P. Tomes
Although encrypting portable devices is not absolutely required by the Security Rule—that is, it is an addressable, not a required, implementation specification—another seven-figure penalty demonstrates .. read more
OCR Reveals Its Right of Access Enforcement Priorities: HIPAA & HITECH Act Blog by Jonathan P. Tomes
At a major annual HIPAA conference, Roger Severino, Director of the Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”), revealed its .. read more
Deny Me My Records? Pay $85,000 under the HIPAA Right of Access! HIPAA & HITECH Act Blog by Jonathan P. Tomes
I have previously written about one of the easiest ways to get a civil money penalty (or a state sanction (see California)—that is, failing to .. read more
We Appreciate Your HIPAA Info Corrections and Concerns: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Alice M. McCart, J.D.
Jon Tomes and I really appreciate your calling to our attention any problems with our HIPAA compliance tools and this blog. We like to fix .. read more