HIPAA Privacy Violation
HIPAA Privacy Violation: What Triggers OCR Enforcement
In February 2024, a small dental practice in New England agreed to a $50,000 settlement with the Office for Civil Rights after a former
Tag
HIPAA Compliance
HIPAA regulations, compliance requirements, and violation prevention
HIPAA Privacy Violations
HIPAA Privacy Violations: How They Happen and How to Prevent Them
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a hospital employee sold protected health information (PHI) of over
HIPAA Protection Rule
HIPAA Protection Rule: What Your Organization Must Do
In February 2024, OCR announced a $4.75 million settlement with a healthcare system that failed to implement even basic safeguards for protected health information.
HIPAA Basics
HIPAA Protects a Category of Information Known as PHI
In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had no clear understanding of what data it
HIPAA Record Storage
HIPAA Record Storage Requirements: What You Must Keep
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed that records containing protected health information were stored
HIPAA Records Retention
HIPAA Records Retention Policy: What You Must Keep
In 2023, a mid-sized clinic in the Southeast received a records request from OCR during a compliance review — and couldn't produce its risk
HIPAA Patient Rights
HIPAA Regulations Establish a Floor of Patient Rights
When Maryland enacted its strict genetic information privacy law and California expanded patient access rights beyond what federal rules require, many healthcare organizations asked the
HIPAA Regulations
HIPAA Regulations for Medical Records Storage Explained
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed that protected health information stored on a network
HIPAA Authorization
HIPAA Release Authorization Form: What Your Organization Must Include
In 2023, OCR investigated a mid-sized specialty clinic that had been using the same patient authorization form since 2009. The form lacked three of the
HIPAA Requirements
HIPAA Requirement Basics Every Covered Entity Must Know
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a former employee stole the protected health information of over
HIPAA Data Storage
HIPAA Requirements for Data Storage: A Practical Guide
In June 2023, OCR settled with a dental practice for $350,000 after an investigation revealed unencrypted patient records stored on a network server with
Accounting of Disclosures
HIPAA Requires an Accounting of Disclosures: Your Guide
In 2011, a small physician practice in the Midwest received a patient's written request for an accounting of disclosures. The office manager had