HIPAA Rules
What Are the 3 Rules of HIPAA? A Plain-English Guide
A small dermatology practice in Connecticut thought they had HIPAA covered. They had a privacy notice on their website and a shredder in the back
Tag
Security Rule
HIPAA Security Rule requirements and implementation
HIPAA Goals
HIPAA Goals: The Core Objectives Your Organization Must Meet
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a former employee stole the protected health information of over
HIPAA Compliance
The HIPAA List: Every Requirement Your Organization Must Meet
In February 2024, OCR settled with a small dental practice for $70,000 — not because of a massive data breach, but because the practice couldn&
HIPAA Online
HIPAA Online: How Digital Compliance Has Changed
In February 2024, OCR settled with a healthcare provider for $480,000 after an investigation revealed that their online patient portal lacked basic encryption safeguards
HIPAA Policy Template
HIPAA Policy Template: What OCR Actually Expects
In 2023, OCR settled with a dental practice in New England for $350,000 — not because of a massive data breach, but because the organization
HIPAA Record Storage
HIPAA Record Storage Requirements: What You Must Keep
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed that records containing protected health information were stored
HIPAA Regulations
HIPAA Regulations for Medical Records Storage Explained
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed that protected health information stored on a network
HIPAA Requirements
HIPAA Requirement Basics Every Covered Entity Must Know
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a former employee stole the protected health information of over
HIPAA Data Storage
HIPAA Requirements for Data Storage: A Practical Guide
In June 2023, OCR settled with a dental practice for $350,000 after an investigation revealed unencrypted patient records stored on a network server with
HIPAA Retention Policy
HIPAA Retention Policy: What You Must Keep and For How Long
In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had no documentation of its risk analysis, policies,
HIPAA Risks
HIPAA Risks Every Healthcare Organization Must Address
In February 2024, OCR announced a $4.75 million settlement with a hospital system that had failed to conduct an enterprise-wide risk analysis for over
HIPAA Security Incident
HIPAA Security Incident: Response Steps Your Team Needs
In 2023, OCR settled with a Louisiana medical group for $480,000 after a HIPAA security incident involving a stolen unencrypted laptop — an incident the