Important Government Warnings about Ransomware: HIPAA & HITECH Act Blog by Jonathan P. Tomes
You may think that I am going overboard with all my recent blogs about ransomware. But I’m not. It is that much of a problem. .. read more
HIPAA Violations Are Still Mostly People, Not Technology: HIPAA & HITECH Act Blog by Jonathan P. Tomes
I learned a long time ago, when I served in that contradiction of terms, military intelligence, that the big risk, at that time to defense .. read more
Coronavirus and Ransomware—What Do They Have in Common? HIPAA & HITECH Act Blog by Jonathan P. Tomes
Well, the short answer is that both coronavirus and ransomware are harmful. And both of them are infections. So-called Project Spy, for example, infects Android .. read more
HIPAA and Working at Home in the Age of the Coronavirus: HIPAA & HITECH Act Blog by Jonathan P. Tomes
I got this question from an attendee of one of my recent HIPAA webinars: “We are a medical billing company in the State of [redacted]. .. read more
HIPAA and Coronavirus: HIPAA & HITECH Act Blog by Jonathan P. Tomes
In case you missed it, the Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”) recently issued a bulletin titled HIPAA Privacy .. read more
HHS Office for Civil Rights and the Department of Education Issue Updated Guidance on Sharing Student Health Records under HIPAA and FERPA: HIPAA & HITECH Act Blog by Jonathan P. Tomes
Having had the good fortune to be a HIPAA consultant for several universities, I am quite aware of the confusion that could result from possibly .. read more
OCR Reveals Its Right of Access Enforcement Priorities: HIPAA & HITECH Act Blog by Jonathan P. Tomes
At a major annual HIPAA conference, Roger Severino, Director of the Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”), revealed its .. read more
HHS OCR Issues New Guidance for Malicious Workforce Threats: HIPAA & HITECH Act Blog by Jonathan P. Tomes
The 2018 Protected Health Information Data Breach Report found that 58 percent of security incidents resulted from insiders rather than outsiders, such as hackers. Discussing .. read more
Change to 42 C.F.R. Part 2? HIPAA & HITECH Act Blog by Jonathan P. Tomes
As substance abuse treatment providers know, 42 C.F.R. Part 2 “trumps”―that is, preempts―the HIPAA Privacy Rule because it gives more protection for substance abuse treatment .. read more
Changed HIPAA and HITECH Penalties—a Boon or a Trap for the Unwary: HIPAA & HITECH Act Blog by Jonathan P. Tomes
The Department of Health and Human Services (“HHS”) has announced a new penalty structure for the civil money penalties (“CMPs”) for HIPAA violations that apparently .. read more