HIPAA Compliance Insights

OSHA Compliance

OSHA Bloodborne Pathogens Standards Require Healthcare Pros To

In 2023, OSHA cited a Florida dental practice for over $78,000 in penalties — not for a data breach, but for failing to maintain an

Carl B. Johnson · Mar 7, 2024

OSHA Compliance

OSHA Compliance for Healthcare Professionals & HIPAA

In 2023, a mid-sized hospital in the Southeast faced simultaneous investigations from OSHA and OCR after a needlestick incident exposed a nurse to bloodborne pathogens

Carl B. Johnson · Mar 7, 2024

OSHA for Healthcare

OSHA for Healthcare: Where Worker Safety Meets HIPAA

When an OSHA inspector walks into your clinic requesting access to employee medical records, exposure logs, and workplace injury documentation, your compliance team faces a

Carl B. Johnson · Mar 7, 2024

OSHA

OSHA in Dental Office: Where HIPAA Compliance Overlaps

In 2023, a dental practice in the Southeast received citations from both OSHA and OCR within the same six-month window. The OSHA inspection uncovered improperly

Carl B. Johnson · Mar 7, 2024

OSHA Compliance

OSHA Medical Office Compliance Training and HIPAA

In 2023, a mid-sized dermatology practice in Texas received citations from both OSHA and OCR within the same quarter — one for failing to train staff

Carl B. Johnson · Mar 7, 2024

OSHA Medical Training

OSHA Medical Training and HIPAA: What You Must Know

When a healthcare clinic in the Midwest received citations from both OSHA and OCR within the same quarter, leadership realized something that too many organizations

Carl B. Johnson · Jan 18, 2024

Patient Health Information

Patient Health Information PHI: What Counts and What Doesn't

In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had disclosed patient health information PHI to a

Carl B. Johnson · Jan 18, 2024

Patient Identifiers

Patient Identifiers HIPAA: The 18 Elements You Must Protect

In 2023, a mid-sized hospital system paid $1.3 million to settle with OCR after a researcher published a dataset they believed was "anonymized&

Carl B. Johnson · Jan 18, 2024

HIPAA Penalties

Penalties for Non-Compliance HIPAA Types Explained

In October 2023, OCR settled with a Louisiana medical group for $480,000 after a phishing attack exposed the protected health information of over 34,

Carl B. Johnson · Jan 18, 2024

HIPAA Penalties

Penalties for Non-Compliance with HIPAA: 2024 Guide

In February 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals exposed catastrophic failures in risk

Carl B. Johnson · Jan 15, 2024

PHI Authorization

PHI Authorization: What Your Forms Must Include

In 2023, OCR settled with a health system that had been using an outdated authorization form for nearly four years — one that failed to include

Carl B. Johnson · Jan 15, 2024

PHI

PHI HIPAA Compliance: Protecting Health Data in 2024

In February 2024, OCR announced a $4.75 million settlement with a nonprofit health system that failed to conduct an enterprise-wide risk analysis — leaving the

Carl B. Johnson · Jan 15, 2024