HIPAA Compliance Insights

HIPAA Certification

Get HIPAA and Bloodborne Pathogen Certifications Fast

Why Employers Are Requiring Dual Certifications — and What Happens When You Don't Have Them In late 2023, a mid-size dental practice in Texas

Carl B. Johnson · Apr 28, 2022

Google Workspace HIPAA

Google Workspace HIPAA Compliant Cost: What You'll Pay

When OCR investigated a small medical practice in 2023 for storing patient records in a consumer Gmail account without a Business Associate Agreement, the practice

Carl B. Johnson · Apr 28, 2022

HB 300 Texas

HB 300 Texas: What It Means for HIPAA Compliance

When a Texas-based hospital system was fined by the state attorney general for failing to train its workforce on state-specific privacy requirements, the organization'

Carl B. Johnson · Apr 28, 2022

Healthcare EDI Training

Healthcare EDI Training: A HIPAA Compliance Priority

In 2023, a mid-size health plan received a corrective action from OCR after an investigation revealed that staff responsible for processing electronic claims had never

Carl B. Johnson · Apr 28, 2022

HIPAA Violations

Healthcare HIPAA Violations: What Triggers OCR Enforcement

In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a workforce member stole protected health information (PHI) of over

Carl B. Johnson · Apr 28, 2022

HHS HIPAA Certification

HHS HIPAA Certification: What It Actually Means

At least once a month, a compliance officer asks me the same question: "Where do we get our official HHS HIPAA certification?" The

Carl B. Johnson · Apr 28, 2022

HHS HIPAA Training

HHS HIPAA Training: What Your Organization Must Know

In February 2024, OCR settled with a Louisiana medical group for $480,000 after an investigation revealed — among other failures — that the organization had never

Carl B. Johnson · Apr 28, 2022

HIPAA Certification

HIPAA and Bloodborne Pathogen Certification Free: What to Know

Every few months, I see the same search spike: healthcare workers and small practices looking for HIPAA and bloodborne pathogen certification free options online. The

Carl B. Johnson · Apr 28, 2022

HIPAA and Mental Health

HIPAA and Mental Health Records: What Providers Must Know

In 2022, a behavioral health provider in New England paid a six-figure settlement to OCR after a workforce member disclosed a patient's substance

Carl B. Johnson · Apr 9, 2022

HIPAA Compliance

HIPAA Approved: What This Really Means for Compliance

A vendor tells your compliance officer their software is "HIPAA approved." A business associate sends over a marketing sheet stamped with a green

Carl B. Johnson · Apr 9, 2022

Business Associates

HIPAA Associates: What Covered Entities Must Require

In February 2024, OCR announced a $4.75 million settlement with a health system that failed to manage its business associate relationships — a pattern enforcement

Carl B. Johnson · Apr 9, 2022

Business Associates

HIPAA Awareness Training for Business Associates: Requirements

In 2024, OCR settled with a business associate — a medical transcription company — for $1.2 million after a breach investigation revealed that not a single

Carl B. Johnson · Apr 1, 2022