Covered Entity Hires Me to Respond to OCR Investigation—No Violation, Case Closed! HIPAA & HITECH Act Blog by Jonathan P. Tomes
A covered entity hired me to respond to an Office for Civil Rights (“OCR”) Complaint Investigation that alleged that the entity was not in compliance .. read more
Still Not Convinced That You Need HIPAA Policies, Procedures, and Training? HIPAA & HITECH Act Blog by Jonathan P. Tomes
I hope that you have read my previous blog posts, particularly those recounting that the Department of Health and Human Services (“DHHS”) Office for Civil .. read more
WellPoint, Inc., Reports Breach to DHHS, Settles for $1.7 Million: HIPAA & HITECH Act Blog by Jonathan P. Tomes
WellPoint, Inc., an Indiana managed care organization, reported under the requirements of the HITECH Act Breach Notification Rule a breach of the electronic protected health .. read more
HIPAA Compliance Training and Onsite Audit “Road Warrior” Report: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Richard D. Dvorak
Lately, I’ve been traveling a lot to help EMR Legal’s clients stay up to date in their HIPAA compliance requirements in light of the new .. read more
Did You Know That You Were a Torturer if You Breached Patient Confidentiality? HIPAA & HITECH Act Blog by Jonathan P. Tomes
As if it were not bad enough facing HIPAA’s criminal penalties—a doctor was sentenced to four months in federal prison for accessing celebrity charts just .. read more
HIPAA Compliance and the FTC: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Richard D. Dvorak
On June 6–7, 2012, I attended the NIST/OCR HIPAA Security Rule Conference at the Ronald Reagan Center, Washington, DC. The Federal Trade Commission’s Division of .. read more
Another HIPAA Compliance Violation Conviction! HIPAA & HITECH Act Blog by Jonathan P. Tomes
On January 18, 2013, a federal district judge sentenced Dale Monroe II to 12 months and one day in federal prison for having sold thousands .. read more
You’d Better Not Control Your Business Associate’s Performance! HIPAA & HITECH Act Blog by Jonathan P. Tomes
The Omnibus Rule, fleshing out the HIPAA changes in the HITECH Act, clarified when covered entities and business associates would be liable for breaches of .. read more
New Resource Posted for Premium Members
The $1 million settlement by Massachusetts General for what has come to be known as the “Million Dollar Subway Ride,” for the loss of paper .. read more
Is It a HIPAA Breach?
I thought that I would try something different for this blog post. I’m going to describe a common HIPAA potential breach and ask questions about .. read more