A collection of 8 posts
A $4.3 Million Mistake Started with One Misunderstood Spreadsheet In 2016, the University of Texas MD Anderson Cancer Center lost an unencrypted laptop and
I once watched a practice manager spend three hours searching for a "federally recognized HIPAA certification test" — convinced that HHS issued some kind
A dermatology practice in New England paid a vendor $4,000 for a "comprehensive HIPAA risk assessment." What they got back was a
The Enforcement Hammer Dropped — and Telehealth Was in the Crosshairs In March 2023, HHS OCR announced that the telehealth enforcement discretion period — the pandemic-era flexibility
A Missing Checkbox Cost This Hospital $387,000 In 2019, Bayfront Health St. Petersburg agreed to a $85,000 corrective action settlement with OCR after
A small cardiology practice in Tennessee thought they were compliant. They had a privacy notice taped to the front desk. Their EHR vendor told them
A few years ago, I got a call from the CEO of a mid-sized billing company. His team had been processing claims for a hospital
A psychiatrist's office in Connecticut faxed 65 pages of therapy notes to a patient's employer. The patient had signed a form
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.