Compliance

Supreme Court sides with Epic and other employers over workers in the May 21 decision, with Justice Neil Gorsuch writing the 5-4 majority opinion.

The Domain-based Message Authentication, Reporting and Conformance standard can help hospitals protect against ransomware and phishing, but is only successfully used by 1.7 percent of large healthcare organizations.

Inspector general says Defense Health Agency sites failed to consistently implement technical, physical and administrative protocols and may have violated HIPAA regulations in the process.

U.S. government got approximately $125 million out of the False Claims case but what about eClinicalWorks customers?

While gap analysis can find existing vulnerabilities in an organization’s security, it’s not an equal substitution for HIPAA-required risk analysis.

A look at what has transpired since the EHR vendor agreed to pay a fine in the False Claims suit that rattled the industry.

Issues with data standardization and the differences in regulations inhibit their potential.

The board couldn’t rule out conflict of interest in the $62 million contract signed between Epic and the academic medical center to overhaul its legacy EHR and billing systems.

The agency released a five-point plan outlining regulatory changes to bolster medical device safety, including requiring manufacturers ensure devices can be updated and patched.

The penalty highlights the need for healthcare providers to thoroughly vet third-party vendors to ensure security best practices.