HIPAA Laws
HIPAA Laws: What Most Organizations Still Get Wrong
A hospital in Louisiana lost $480,000 because a single employee snooped through a patient's medical record out of curiosity. Not a hacker.
Tag
Healthcare Privacy
A collection of 28 posts
HIPAA Compliance
What HIPAA Compliant Means for Your Organization
A small dermatology practice in Connecticut thought they were HIPAA compliant because they had a privacy notice in the lobby and passwords on their computers.
HIPAA Privacy and Security Training
HIPAA Privacy and Security Training: What Actually Works
A receptionist at a cancer clinic in Florida forwarded a spreadsheet of 1,200 patient names, diagnoses, and Social Security numbers to her personal Gmail
HIPAA Exempt
HIPAA Exempt: Who Actually Qualifies and Who Doesn't
A gym owner in Texas once told me, straight-faced, that his business was HIPAA exempt because he wasn't a doctor. He collected health
HIPAA Basics
Define HIPAA and Why It Was Established: A Real Guide
A $16 Million Wake-Up Call That Traces Back to 1996 In 2018, Anthem Inc. wrote a check to the U.S. Department of Health and
PHI Definition
What PHI Means in HIPAA: The Definition That Drives Everything
A Single Misunderstood Term Cost This Health Plan $6.85 Million In 2018, Premera Blue Cross agreed to pay $6.85 million to settle HIPAA
PHI
What Does PHI Mean in Healthcare? A Real-World Guide
A Receptionist, a Fax Machine, and a $1.5 Million Fine A few years ago, I consulted with a specialty clinic where a front-desk employee
HIPAA Titles
5 Titles of HIPAA: What Each One Actually Covers
Here's something that surprises most people in healthcare: the law they cite every single day — HIPAA — has five distinct sections, and the vast
HIPAA Exceptions
When Does HIPAA Not Apply? Surprising Exceptions
A personal trainer asks a client about her recent knee surgery. A school nurse hands a student's immunization record to a teacher. A
HIPAA Authorization
What Is a HIPAA Authorization? A Practical Guide
The Form That Stops Lawsuits — or Starts Them A surgeon's office in Texas faxed a patient's psychiatric records to an employer.
HIPAA Refresher Training
HIPAA Refresher Training: Why Annual Reviews Save Millions
A hospital in New York paid $4.8 million to settle HIPAA violations after a former employee — who had been terminated — still had active access
PHI
What Is PHI in Medical Terms? A Plain-English Guide
A hospital receptionist in Texas once emailed a spreadsheet of 800 patient names, birth dates, and insurance IDs to the wrong clinic. Within 72 hours,