Oct 30, 2018 | HSN, Policies and Procedures, Security Training
It’s no secret that employees violate security policies. Whether we’d like to admit it or not, there’s a good chance we have all violated a security policy once upon a time. Sometimes, employees violate policies to save time or make their job easier, and sometimes,...
Dec 11, 2017 | HSN, Policies and Procedures
HIPAA is often described as dealing with CIA – the Confidentiality, Integrity and Access to patient records. In the past, access to patient records often required a written request, accompanied by a response in the mail that could take several weeks. However, in...
Aug 21, 2017 | Audit, HSN, Policies and Procedures, Risk Assessment
Have you ever wondered what exactly triggers a breach case investigated by Health and Human Services? While a number of things may attribute to an investigation, according to Deven McGraw, deputy director for health information privacy at the HHS Office for...
Mar 22, 2017 | Breach, HIPAA Fine, HIPAA Violations, HSN, Policies and Procedures
According to an article over on tripwire, a covered entity is facing serious penalties after the Office for Civil Rights issued them a hefty fine for their failure to comply with audit procedures including review, modification and termination of users’ access. In the...
Mar 20, 2017 | Breach, HIPAA Violations, HSN, Policies and Procedures
According to an article on HIPAA Journal, over a 27 month period an employee of St. Charles Health System in Oregon accessed nearly 2,500 patient records without authorization. All it took to discover the unnamed employee had been inappropriately accessing patient...
Jan 18, 2017 | HSN, Policies and Procedures, Risk Assessment
In the January, 2017 edition of the OCR Cyber Newsletter (PDF), OCR gives guidance to what is required from Covered Entities and Business Associate regarding auditing / monitoring of access to PHI. Covered Entities and Business Associates should make sure that they...
