PHI
What PHI Is Under HIPAA — And What It Isn't
A Receptionist, a Printer, and a $1.5 Million Penalty In 2018, a medical center employee left a stack of patient lab results sitting on
Tag
Covered Entity
A collection of 174 posts
HIPAA Compliance Certificate
HIPAA Compliance Certificate: What It Really Means
Last year, I watched a small behavioral health clinic in Ohio hand OCR investigators a framed HIPAA compliance certificate during an audit — as if it
HIPAA Forms
What Is a HIPAA Form? The Real Answer Beyond the Jargon
Last month, a medical office manager in Ohio called me in a panic. She'd just been told by a patient's attorney
HIPAA Notice of Privacy Practices
HIPAA Notice of Privacy Practices: What You Must Get Right
That Binder Gathering Dust at Your Front Desk Could Cost You Six Figures I walked into a dermatology practice last spring and asked to see
Business Associate Definition
Business Associate Definition: What HIPAA Actually Requires
The Vendor That Cost a Health Plan $4.3 Million In 2016, Advocate Health Care Network agreed to pay $5.55 million to settle multiple
Healthcare Emergency Management
Healthcare Emergency Management: HIPAA Rules Still Apply
The Hurricane That Exposed More Than a Hospital's Roof In 2017, Hurricane Harvey flooded a major Texas hospital system. Staff scrambled to evacuate
EHR and HIPAA
EHR and HIPAA: What Every Practice Gets Wrong
A $4.3 Million Wake-Up Call Buried in an EHR Audit Log In 2023, the University of Texas MD Anderson Cancer Center lost its years-long
HIPAA Eligibility
HIPAA Eligibility: Who Must Comply and Why It Matters
A $5.1 Million Penalty That Started with a Simple Question In 2017, Memorial Healthcare System in Florida agreed to pay $5.1 million to
HIPAA Violation Penalties
HIPAA Violation Penalties: What They Cost in 2026
A $4.75 Million Wake-Up Call That Started With One Unencrypted Laptop In 2014, New York-Presbyterian Hospital and Columbia University paid a combined $4.8
HIPAA
HIPAA in 2026: What Every Covered Entity Must Get Right
A Fax Machine, a $4.75 Million Penalty, and Why HIPAA Still Catches Organizations Off Guard In 2020, a large health system called Premera Blue
Covered Entity
Covered Entity HIPAA: Who Qualifies and Why It Matters
A $5.1 Million Mistake Started with One Wrong Assumption In 2017, Memorial Healthcare System paid $5.1 million to settle with the Office for
HIPAA Eligibility
HIPAA Eligibility: Who Must Comply and Why It Matters
In 2023, OCR settled with a dental practice in New England that had never conducted a risk analysis, never issued a Notice of Privacy Practices,