What if it Happens Again?
There’s an old saying that lightning never strikes the same place twice. Experts say that isn’t true, and some places (like tall buildings) are natural…
8 Ways to Lower the Cost of Data Breach Remediation
According to the Ponemon Institute’s latest Cost of a Data Breach Study (sponsored by IBM Security), the average cost of a data breach has risen…
What’s the Difference Between HIPAA and HITECH?
HIPAA is a regulation that’s gets talked about a lot. But there are other industry regulations that healthcare providers – as well as those that…
Help for Small Businesses and HIPAA
Think You’re Too Small for HIPAA Fines? Think Again! Understandably, the really big fines for HIPAA non-compliance are the ones that get the most attention…
Do I Need to Comply With HIPAA/HITECH Privacy Rules?
In 2009, the U.S. Congress passed The Health Information Technology for Economic and Clinical Health (HITECH) Act as part of the American Recovery and Reinvestment…
What ISVs Need to Know About Hosting SaaS Apps in Healthcare
As reported in the HIPAA Journal, the HHS has issued a clarification statement for when business associates can be fined for non-compliance. If you are…
What SaaS Developers Need to Know About HIPPA/HITECH Business Associate Liability
HHS releases new ‘fact sheet’ on Business Associate liability The agencies responsible for IT security and data privacy have a lot of flexibility over what…
Employee Health Records: Are They Covered Under HIPAA?
Employee Health Records: Are They Covered Under HIPAA? It seems like there’s another data breach announcement involving private health information (PHI) almost every day. These…
What Healthcare Providers Can Learn From the $3 million Cottage Health Settlement
The Office for Civil Rights (OCR) at the U.S Department of Health and Human Services stayed busy last year. In 2018, OCR settlements totaled $28.7…
State of Healthcare Cybersecurity 2019
2019 is set to be a busy year for IT security professionals, especially those in healthcare. We dug into the most recent research on the…
6 Things Healthcare Providers Need to Know About Disaster Recovery Planning
Disaster recovery planning and business continuity planning is essential for all businesses, no matter the industry, but it takes on special significance in healthcare thanks…
IT Strategy Self-Assessment Quiz
9-Point IT Strategy Self-Assessment Quiz As we continue into the new year, many organizations are busy charting a course they believe will help them reach…
3 Real Life Lessons From the Latest Data Breaches
Every day, it seems there’s a new headline announcing another data breach. It’s easy to become desensitized and pass these articles by as just the…
8 HIPAA Compliance Questions to Ask Your Business Associates
In January 3rd’s post, we discussed the importance of including business associates in your HIPAA risk assessments. You can read the full post here: Is…
Customers Say They Prefer Cloud Applications to On-Premises
451 Research expects 60% of enterprises to have the majority of their IT resources residing in the cloud by 2019. While that reflects the cloud-first…
Is a Business Associate Agreement (BAA) Enough to Protect You from HIPAA Enforcement Action?
According to HIPAA, businesses that handle EPHI (electronic personal health information) are required “to have contracts or other arrangements with business associates that will have…