Data Breach Litigation: What You Need to Know
As sensitive data breaches become increasingly commonplace, many individuals are seeking to hold breached organizations responsible for the violation of their privacy. As a result, class- action lawsuits have emerged as a popular trend in the world of data breach litigation. With the rapid increase in this type of legal action, healthcare organizations must take measures to prevent data breaches. The first step to prevention is understanding why class-action lawsuits are on the rise as a response to data breaches.
Building Your Medical Device Cybersecurity Protocol
Medical device cybersecurity has become significantly more important in the age of digital health. There are essential actions health systems must take to protect themselves – and their patients. This blog offers 5 guidelines to evaluate and maintain your medical device cybersecurity.
From 300 to 36: Reducing Hurdles in Business Associate Assessments
Business associate assessments are notoriously burdensome and time consuming for both covered entity and the business associate (BA). But the typical 300-question survey can be significantly narrowed by focusing on the most critical and problematic issues.
GDPR Impact on US Healthcare Organizations
The General Data Protection Regulation (GDPR) is the European Union (EU) regulation on privacy and security of personally identifiable information (PII). It goes into effect on May 25, 2018. This blog provides an important comparison between GDPR and HIPAA.
Sensato Cybersecurity Solutions and ComplyAssistant Introduce Medical Device Cybersecurity Operations Program
MD-COP is a comprehensive offering specifically designed to protect medical devices deployed in healthcare provider settings. The MD-COP solutions provide hospitals with a dedicated security operations center, medical device breach detection system, medical device cybersecurity risk assessment, medical device cybersecurity policy, medical device manufacturer risk assessment and scoring, on-going threat intelligence and medical device cybersecurity best practices.
HIPAA and Social Media – The Need for Policies and Training
Healthcare organizations and their third party vendors have an obligation to the federal government and their patients to abide by the HIPAA regulations. Unfortunately the very foundation of social media opposes everything in relation to the privacy, security, and confidentiality of information. Social media allows for anyone to see your organizations information, at any time, in any part of the world.
ComplyAssistant and Sensato Form Strategic Alliance
Colts Neck, NJ – July 24, 2017 – For Immediate Release – ComplyAssistant and Sensato, both located in New Jersey,
Why Empowering the CISO is Important for Healthcare Information Security Risk Management
We are starting to see Chief Information Security Officers (CISOs) reporting outside of Information Technology (IT). This makes sense because the CISO needs to be able to audit the IT controls and give an unbiased report to senior management.
ComplyAssistant’s Solution for Third Party Vendor (BA) Security Risk Management Gains Traction!
“CEs are struggling to support their own internal security program and are not able to assess their third party BAs. We get it done for them”, says Gerry Blass, President & CEO of ComplyAssistant.
HIPAA-HITECH Security – Why Pay for “Nothing”?
We read about healthcare organizations that get fined by the OCR for basically doing nothing, meaning that they have a general lack of evidence of due diligence for HIPAA.
How to avoid HIPAA penalties based on some of the largest!
Reviewing some of the largest fines can help healthcare organizations learn how to avoid them should an incident occur. Many experts say that it isn’t IF an incident will occur, it’s WHEN.
ComplyAssistant Kicks Off Summer Webinar Series
ComplyAssistant kicked off its summer webinar series on June 22, 2016 with guest speaker Helen Oscislawski, founder of the Attorneys