Compliance & Legal

Sony HIPAA breach lawsuit approaches settlement
By Erin McCann | 12:04 pm | September 04, 2015
Plaintiffs who slapped Sony Pictures with a class action lawsuit after their detailed medical records were swiped in a cyberattack have finally reached an agreement on a proposed settlement.
Oncology group slapped with $750K HIPAA fine
By Erin McCann | 11:59 am | September 02, 2015
Healthcare security folks, listen up: Failing to encrypt portable devices and laptops containing patient data could result in a serious HIPAA fine, as one Indiana-based health group can now attest.
Time to ditch the 'security team of yesterday'
By Erin McCann | 01:54 pm | September 01, 2015
Data security isn't what it used to be. With today's threat landscape, the stereotypically introverted, more-into-computers-than-people techie isn't going to cut it as CISO. And there are plenty of people who will tell you why.
Q&A: Partners CISO Jigar Kadakia talks the evolving threat landscape
By Bernie Monegain | 11:04 am | September 01, 2015
Jigar Kadakia knows a little something about data security. As CISO of Partners HealthCare in Boston, he leads a security team of more than 40 people responsible for keeping the health system well buttoned up. We talked with Kadakia about his approach to glean some ideas that might be useful to other health systems and hospitals big and small.
HIPAA breach for hospital after worker swiped patient data
By Erin McCann | 12:10 pm | August 28, 2015
A 12-hospital health system is notifying hundreds of its current and former patients that their protected health information has been compromised after discovering an employee was involved in identity theft.
eRx of controlled substances now legal in 50 states
By Mike Miliard | 11:57 am | August 28, 2015
With e-prescribing of controlled substances legal nationwide, providers and pharmacies are empowered with a new technological tool in the fight against prescription painkillers. Now more need to use it.
VA's use of Yammer made for PHI, data security risk
By Erin McCann | 12:05 pm | August 27, 2015
Turns out the Department of Veterans Affairs uses a Web-based communication platform that isn't exactly secure. In fact, a new report suggests VA practices in this case might have put protected health information at serious risk.
Snooping employees sacked, disciplined after HIPAA breach
By Erin McCann | 12:03 pm | August 21, 2015
What happens when a healthcare organization's employees are found to have been inappropriately accessing patient medical records? The actions of one health system might serve as an example.
Coding update makes for HIPAA breach blunder
By Erin McCann | 11:56 am | August 18, 2015
A state health agency is mailing out HIPAA breach notification letters after a technical glitch sent out letters containing protected health information to the wrong recipients.
Health system cleared in data breach lawsuit
By Erin McCann | 12:01 pm | August 17, 2015
An appellate court has cleared Advocate Medical Group of wrongdoing in a class action lawsuit alleging the organization failed to protect patient data following a massive HIPAA data breach.