HIPAA Rules
What Are the 3 Rules of HIPAA? A Plain-English Guide
A small dermatology practice in Connecticut thought they had HIPAA covered. They had a privacy notice on their website and a shredder in the back
Tag
Privacy Rule
HIPAA Privacy Rule requirements and guidance
Privacy Rule
Privacy Rule HIPAA Summary: What You Actually Need to Know
A $4.75 Million Mistake That Started With One Misunderstood Rule In 2022, Memorial Hermann Health System paid a $2.4 million settlement to HHS
HIPAA Privacy Risk Analysis
HIPAA Privacy Risk Analysis: What Most Orgs Get Wrong
A $4.75 Million Fine That Started With One Missing Document In 2023, OCR settled with Lafourche Medical Group for $480,000 after a phishing
HIPAA Training
HIPAA for Healthcare Workers Overview Post Test Guide
A hospital system in the Midwest recently terminated three employees after a post-training assessment revealed they could not correctly identify what constitutes protected health information
HIPAA General Release Form
HIPAA General Release Form: What Your Organization Must Know
In 2023, a mid-size hospital system in the Southeast received a corrective action mandate from OCR after routinely using an outdated, overly broad release form
HIPAA Goals
HIPAA Goals: The Core Objectives Your Organization Must Meet
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a former employee stole the protected health information of over
HIPAA Compliance
The HIPAA List: Every Requirement Your Organization Must Meet
In February 2024, OCR settled with a small dental practice for $70,000 — not because of a massive data breach, but because the practice couldn&
HIPAA Medical Privacy
HIPAA Medical Privacy: What Covered Entities Get Wrong
In February 2024, OCR settled with a New England health system for $1.3 million after investigators found that staff had been accessing patient records
HIPAA Policy Template
HIPAA Policy Template: What OCR Actually Expects
In 2023, OCR settled with a dental practice in New England for $350,000 — not because of a massive data breach, but because the organization
HIPAA Privacy Authorization
HIPAA Privacy Authorization: What Your Forms Must Include
In 2023, OCR settled with a New England dermatology practice for $300,640 after the organization disclosed protected health information to a reporter's
HIPAA Privacy Forms
HIPAA Privacy Forms: What Your Organization Must Get Right
In 2023, OCR settled with a dental practice in New England for $50,000 after investigators discovered the organization had failed to provide patients with
HIPAA Privacy Forms
HIPAA Privacy Forms for Patients: What You Must Include
In 2023, OCR settled with a dental practice in New England for $50,000 after investigators found the organization had failed to provide patients with