Compliance & Legal

The European regulation is much more stringent than HIPAA, and those health systems that handle EU patient data, even in the U.S., must adjust their privacy measures to comply.

While only about 6,500 patients were impacted by a cyberattack on Associates in Psychiatry and Psychology in March, the provider's transparency in its breach notification is a valuable example for other organizations.

In March, the Internet Engineering Task Force approved the Transport Layer Security version 1.

The dashboard can help health systems manage the stringent privacy rules of the EU's looming General Data Protection Regulation, which goes into effect this week.

Security organizations just made it easier and more effective for hospitals to deploy and operate the dominant infosec frameworks.

Supreme Court sides with Epic and other employers over workers in the May 21 decision, with Justice Neil Gorsuch writing the 5-4 majority opinion.

The Domain-based Message Authentication, Reporting and Conformance standard can help hospitals protect against ransomware and phishing, but is only successfully used by 1.7 percent of large healthcare organizations.

Inspector general says Defense Health Agency sites failed to consistently implement technical, physical and administrative protocols and may have violated HIPAA regulations in the process.

U.S. government got approximately $125 million out of the False Claims case but what about eClinicalWorks customers?

While gap analysis can find existing vulnerabilities in an organization’s security, it’s not an equal substitution for HIPAA-required risk analysis.