Compliance & Legal

Payment rules, MU3 on collision course?
By Diana Manos | 08:58 am | August 13, 2015
With the new Merit-based Incentive Payment System slated to kick in during meaningful use Stage 3, some industry insiders are forecasting trouble among providers.
Update: Hackers hit business associate, swipe PHI and Social Security numbers
By Erin McCann | 11:58 am | August 05, 2015
2015 thus far has been the year of hackers targeting the healthcare industry. And they don't appear to be slowing down. Just last week, another business associate notified individuals that their protected health information was stolen following yet another "sophisticated cyberattack."
Extended FDA Track & Trace deadline a boon for Rx
By Anthony Vecchione | 06:07 am | August 03, 2015
Health system pharmacy managers and contracting & purchasing executives got a reprieve when the Food & Drug Administration moved the deadline for compliance with the Drug Supply Chain Security Act to Nov. 1, 2015.
Hackers hit health system, swipe data on 220K
By Erin McCann | 12:02 pm | May 27, 2015
A two-hospital health system in Indiana is notifying its patients that their protected health information and Social Security numbers have been compromised following a phishing attack. What's more, cyberattackers were able to swipe data unchecked for more than a year.
Insurance website at center of probe
By Bernie Monegain | 12:00 pm | May 12, 2015
Massachusetts state officials knew its $1 billion insurance website -- set up under the Affordable Care Act and part of the nationwide push to offer health insurance to the uninsured -- was in trouble. Worse, they said nothing.
Employees top cause of security mishaps
By Erin McCann | 12:03 pm | May 11, 2015
When it comes to healthcare data security breaches, law firms can offer firsthand insight into what they see from their clients. A new report sheds light on the No. 1 cause of security incidents for which companies sought legal guidance.
Healthcare security: Adapt or die
By Erin McCann | 11:37 am | May 04, 2015
Every 60 seconds, 232 computers are infected with malware; 12 websites are successfully hacked; more than 571 new websites are created, and 204 million emails are sent. Combine this with the fact that on the black market, medical records are worth $60, compared to credit card data, which typically sells for $20. "That makes us a significant targets," said Intermountain Healthcare's CISO Karl West.
Best practices: third-party vendor contracts
By Erin McCann | 11:51 am | February 25, 2015
There's a right way to manage third-party risks and vendor contracting, and there's the wrong way. And, too often, it's the latter. But it doesn't have to be. Here are some things your organization should keep in mind.
Are you doing your security framework right?
By Erin McCann | 11:24 am | February 18, 2015
It turns out many healthcare organizations get more than a few things wrong about their information security frameworks.
Don't fear the HIPAA audit
By Anthony Brino | 08:59 am | February 13, 2015
The threat from hackers affects all business, but healthcare providers face the additional threat of fines for failure to comply with HIPAA regulations. These fines are no mere speeding ticket.