Workforce Training

HIPAA Rules and Compliance

HIPAA Rules and Compliance: What Enforcement Data Reveals

In January 2024, OCR settled with a healthcare system for $4.75 million after investigators found the organization had failed to conduct an enterprise-wide risk

May 3, 2025

HIPAA Security Incident

HIPAA Security Incident: Response Steps Your Team Needs

In 2023, OCR settled with a Louisiana medical group for $480,000 after a HIPAA security incident involving a stolen unencrypted laptop — an incident the

May 3, 2025

HIPAA Security Rule

HIPAA Security Incident Definition: What Counts and Why

In 2023, OCR settled with a healthcare system for $1.3 million after investigators found the organization had no process for identifying or responding to

May 3, 2025

HIPAA SMS

HIPAA SMS Rules: How to Text About PHI Legally

In 2023, a dental practice in Texas paid a $50,000 settlement after a staff member texted a patient's diagnosis and insurance details

Feb 28, 2025

HIPAA Social Media

HIPAA Social Media Guidance HHS: What You Must Know

In December 2022, OCR settled with a dental practice for $23,000 after an employee responded to a negative online review by disclosing a patient&

Feb 28, 2025

HIPAA Social Media Rules

HIPAA Social Media Rules: What Your Workforce Must Know

In 2022, a Texas dental practice paid a $10,000 settlement after a staff member responded to a negative online review by disclosing the patient&

Feb 28, 2025

HIPAA Start Date

HIPAA Start Date: Key Compliance Dates You Must Know

When OCR investigates a covered entity and discovers years of noncompliance, one of the most common — and least persuasive — defenses is confusion about when HIPAA

Feb 23, 2025

HIPAA Telehealth

HIPAA Telehealth Platforms: What Compliance Requires

In January 2025, HHS confirmed that the temporary telehealth enforcement discretion introduced during the COVID-19 public health emergency has ended. That means every healthcare organization

Feb 23, 2025

HIPAA Telehealth Requirements

HIPAA Telehealth Requirements Your Organization Must Meet

When OCR announced in late 2024 that the pandemic-era telehealth enforcement discretion would not be extended indefinitely, hundreds of healthcare organizations suddenly realized they had

Feb 23, 2025

HIPAA Teletherapy

HIPAA Teletherapy Compliance Guidelines for 2025

When OCR settled with a behavioral health provider in 2023 for $125,000 after a therapist conducted sessions over a consumer-grade video platform without a

Feb 23, 2025

HIPAA Texting Policy

HIPAA Texting Policy: What Your Organization Must Get Right

In 2023, a small dental practice in Texas received a six-figure settlement demand from OCR after a patient complaint revealed staff were texting appointment details,

Feb 23, 2025

HIPAA Training

HIPAA Training and Certification Free: What You Need to Know

In early 2024, a small behavioral health clinic in the Midwest received a $50,000 OCR civil money penalty after a breach investigation revealed that

Feb 23, 2025