Resources

OCR Settles with Business Associate in Attack Affecting Over 200,000 Individuals

Our world is quite different from the one a few years back. More and more I hear about smart appliances that you can interact with them even if you are not home. I also hear about applications that can track our locations and even how digital photos create security risks and vulnerabilities.

As a resource to Covered Entities and Business Associates the Department Of Health and Human Services (HHS) Office for Civil Rights (OCR) provides two reports related to HIPAA Compliance and Breaches.

Here are sample questions to ask as a quick self-assessment tool about Access Control, whether you are a healthcare provider referred to as a Covered Entity (CE), or a Business Associate (BA).

My wife and I are very excited as it looks like we may be able to go on a trip that we dreamed of for many years. We did our homework in the selection of the destination and the route. We even selected the meals that we will be eating during the trip and at the different locations that we will be visiting. Yet, as part of our research, we were surprised to find recommendations as it relates to our security and the scams we could face.

I don’t know about you but I’m sick and tired of passwords. To tell you the truth, I don’t even know how many passwords I have and there are some accounts that I refuse to touch as I don’t remember the passwords any more and if I touch them I know I will have to go through the process of identifying myself, resetting the password, and then changing adding the new password to the devices that connect to these accounts.

Have you ever:

• Forgot to remove access of a departing employee;
• Forgot to collect devices with potential PHI from departing employees;
• Had devices with PHI been lost?