Compliance Updates

August 5, 2019   |   Ken Reiher

Is Meaningful Use Still Meaningful?

Originally designed as part of HITECH to encourage providers to adopt electronic health records (EHRs), meaningful use was a means to an end – towards improved population health and better patient care among fragmented providers. The program prioritized five pillars of health outcomes:

Keep reading...
February 15, 2018   |   Ken Reiher

GDPR Impact on U.S. Healthcare Organizations

The General Data Protection Regulation (GDPR) is the European Union (EU) regulation on privacy and security of personally identifiable information (PII). It goes into effect on May 25, 2018. This blog provides an important comparison between GDPR and HIPAA.

Keep reading...
June 16, 2016   |   Gerry Blass

Office of Civil Rights Phase 2 HIPAA Audit Protocols

Based on prior statements from the OCR and their recently distributed survey, the pool of audit candidates will be approximately 800 to start. These randomly selected organizations will be chosen using the National Provider Identifier database and other external sources.

Keep reading...
December 11, 2015   |   Gerry Blass

Business Intelligence and Big Data – What are the HIPAA Privacy and Security Impacts?

Since we are talking about healthcare information we must talk about protected health information (PHI) and the HIPAA-HITECH-OMNIBUS Privacy, Security, and Breach Notification Rules. BI and Big Data analysis that includes PHI and its use and disclosure must be reviewed against the HIPAA security and privacy requirements and the breach notification requirements.

Keep reading...
October 12, 2015   |   Gerry Blass

The Ever Increasing Size of Healthcare Breaches

The numbers of individuals involved in recent breaches have been huge in relation to the magic number of 500. We all read about breaches involving millions of individuals. Some of the recent cyber attacks have potentially resulted in numbers up to 10 million. Compare that to 500, and you have to wonder if that metric is going to increase, and where will it all end. How big can future breaches become?

Keep reading...
April 30, 2015   |   Gerry Blass

Accountable Care Organizations & Health Information Exchanges (An Information Security Survey)

Journal of Healthcare Information Management – (JHIM) – Winter 2015 Used by permission from HIMSS. Download the JHIM PDF version of this article The authors have written a number of JHIM columns regarding HIPAA-HITECH-Omnibus, (HIPAA ,Heath Insurance Portability and Accountability Act; HITECH, Health Information Technology for Economic and Clinical Health) etc., and have focused at … Continue reading Accountable Care Organizations & Health Information Exchanges (An Information Security Survey)

Keep reading...
January 8, 2015   |   Gerry Blass

Innovation in HealthCare – The Impact on Information Privacy and Security

It is hard to believe that the HIPAA Security Rule was written when most medical records were only in hardcopy format. Today, HIPAA CEs and BAs must make sure they understand their current vulnerabilities that could impact how they protect PHI. We read about PHI breaches on a regular basis, and some have been huge. This kind of news has certainly caught the attention of healthcare leaders. The key is to continually have a program in place to assess changes that result from innovation and try to stay one step ahead of related potential vulnerabilities.

Keep reading...