Our world is quite different from the one a few years back. More and more I hear about smart appliances that you can interact with them even if you are not home. I also hear about applications that can track our locations and even how digital photos create security risks and vulnerabilities.
As a resource to Covered Entities and Business Associates the Department Of Health and Human Services (HHS) Office for Civil Rights (OCR) provides two reports related to HIPAA Compliance and Breaches.
Here are sample questions to ask as a quick self-assessment tool about Access Control, whether you are a healthcare provider referred to as a Covered Entity (CE), or a Business Associate (BA).
Pre-Rulemaking Hospital eCQM and Hybrid Specifications for Potential Inclusion in 2024 Reporting Period
The Centers for Medicare & Medicaid Services (CMS) has posted the electronic clinical quality measure (eCQM)
Most of us are not keeping malware in our list of issues to be overly concerned about yet this oversight may cost us dearly in the near future.
My wife and I are very excited as it looks like we may be able to go on a trip that we dreamed of for many years. We did our homework in the selection of the destination and the route. We even selected the meals that we will be eating during the trip and at the different locations that we will be visiting. Yet, as part of our research, we were surprised to find recommendations as it relates to our security and the scams we could face.
I don’t know about you but I’m sick and tired of passwords. To tell you the truth, I don’t even know how many passwords I have and there are some accounts that I refuse to touch as I don’t remember the passwords any more and if I touch them I know I will have to go through the process of identifying myself, resetting the password, and then changing adding the new password to the devices that connect to these accounts.
Have you ever:
- Forgot to remove access of a departing employee;
- Forgot to collect devices with potential PHI from departing employees;
- Had devices with PHI been lost?
Everyone in the healthcare industry seems to be familiar with HIPAA but as we normally comment, they may not know as much as they think. For example, it is not uncommon to hear a statement such as:
- My IT company says HIPAA doesn’t apply to them.
Cyber security and cyber-attacks have proven to be quite challenging for organizations and individuals. For better or worse, the intricacies of these challenges can be intensified by how we work and our workplaces. Employees may be working online, work-from-home, in-person, or hybrid (a combination of both). Computers, mobile devices, and internet connectivity have become essential to our way of living.