Health IT Pulse:

OCR


December 22, 2017  2:46 PM

OCR: Combat internal healthcare security threats with IAM policies

Tayla Holman Tayla Holman Profile: Tayla Holman
Data breach, OCR

The Office for Civil Rights (OCR) is urging healthcare organizations to create effective identity and access management (IAM) policies to prevent data breaches by former employees. An IAM policy can help prevent healthcare security threats by making sure that users only have

February 17, 2017  5:04 PM

Health data breaches and hacker attacks spiked dramatically in 2016

Shaun Sutner Shaun Sutner Profile: Shaun Sutner
cybersecurity, OCR, PHI

Health data breaches triggered by hacking attacks spiked by 320% in 2016 and ransomware became widespread, according to a report by a health IT cybersecurity firm. Released the week before


October 12, 2016  1:45 PM

OCR HIPAA guidance

Shaun Sutner Shaun Sutner Profile: Shaun Sutner
Cloud Computing, HIPAA, OCR

As Boston lawyer and HIPAA healthcare expert David Harlow points out in his eminently useful blog post on the


July 27, 2016  1:59 PM

Most hospitals say they have EHR disaster recovery plans

Shaun Sutner Shaun Sutner Profile: Shaun Sutner
Disaster Recovery, HIPAA, HIPAA audits, OCR

While about a third of U.S. hospitals reported to the Office of the Inspector General of the Department of Health and Human Services that they don't have HIPAA-compliant EHR disaster recovery plans, most hospitals told OIG they have comprehensive plans to recover patient data after a...


July 6, 2016  7:03 PM

OCR gets tough with business associates

Shaun Sutner Shaun Sutner Profile: Shaun Sutner
HIPAA audits, HIPAA business associate, OCR

With its levy of a $650,000 fine on a service provider of the Archdiocese of Philadelphia, the Department of...


March 25, 2016  3:36 PM

HIPAA audits and their discontents

Shaun Sutner Shaun Sutner Profile: Shaun Sutner
HIPAA, HIPAA compliance audits, OCR

Now that it appears the long-awaited HIPAA audits of healthcare organizations and their business associates are actually starting, it's worth noting that not everyone is thrilled about the prospect. Indeed, one consultant told me that a lot of IT folks at provider organizations were in a state...


March 9, 2016  1:54 PM

Anxiety about cyberattacks on health data prompts OCR-NIST crosswalk

Shaun Sutner Shaun Sutner Profile: Shaun Sutner
cybersecurity, HIPAA, nist, OCR

With worry about cyberattacks on health data networks at an all-time high, the Department of Health and Human Services' Office for Civil Rights (OCR) is drawing on the National Institute of Standards and Technology (NIST) for help in


February 9, 2016  4:23 PM

ONC says HIPAA doesn’t impede health IT interoperability

Alex Delvecchio Alex Delvecchio Profile: Alex Delvecchio
HIPAA, HIPAA Compliance, Interoperability, OCR, ONC, PHI

Officials at ONC are determined to smother the notion that HIPAA and its PHI regulations interfere with providers' capacity to exchange patients' health information. At least that's the implication behind a collection of educational resources being published and promoted by ONC. In response to...


January 12, 2016  11:22 AM

OCR issues reminder about patient health information access under HIPAA

Alex Delvecchio Alex Delvecchio Profile: Alex Delvecchio
hhs, HIPAA, HIPAA business associate, OCR, PHI

The U.S Department of Health and Human Services is trying to change the perception of what HIPAA does for patients. HIPAA is commonly thought of as a rule that requires health organizations to secure patients'


December 23, 2015  2:52 PM

Amid holiday cheer, OCR issues warnings in form of resolution agreements

Shaun Sutner Shaun Sutner Profile: Shaun Sutner
HIPAA, HIPAA security rule, OCR

The U.S. Department of Health and Human Services’ HIPAA-enforcing arm, OCR (Office for Civil Rights), has bestowed a few early Christmas presents on healthcare providers and their business...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: