Privacy & Security

Healthcare lawyer probes HIPAA rule
By Tom Sullivan | 08:29 am | January 24, 2013
The omnibus HIPAA Privacy and Security final rule released by HHS on Jan. 17 answered some questions, provided necessary guidance in certain areas -- but some of the thorniest issues, data breach notification among those, are still cryptic enough that lawyers and privacy officers will still face difficult judgment calls every time a laptop is lost or stolen.
New era of health data security begins
By Mary Mosquera | 11:13 am | January 22, 2013
The enhanced set of protections finalized in the omnibus HIPAA privacy and security rule released Jan.17 now becomes the new baseline for anyone who handles health information. It doesn't change meaningful use requirements, but combined, the two may drive more providers to protect patient data, according to privacy and security experts.
HHS makes 'sweeping' changes to HIPAA
By Tom Sullivan | 10:48 am | January 18, 2013
The most eagerly awaited -- if not anxiety-laden -- set of regulations in the healthcare spectrum arrived January 17: HHS issued modifications to the HIPAA Privacy, Security, Enforcement and Breach Notification Rules. The man charged with enforcing the rules said they represent "sweeping changes."
Experts: mHealth poses privacy challenge
By Diana Manos | 11:53 am | January 09, 2013
Despite the amazing potential of mobile healthcare, many concerns still remain over the issues of privacy and security.
Q&A: Privacy maven Deborah Peel, MD
By Anthony Brino | 11:19 am | January 03, 2013
Deborah Peel, MD, was trained as a Freudian psychoanalyst and worked as a psychiatrist in Austin, Texas, for nearly three decades before becoming a privacy activist, founding the group Patient Privacy Rights in 2006 after being appalled by HIPAA's evolution into what she sees as a weak baseline for privacy and security.
Lawyer: Ignore HIPAA at your own risk
By Bernie Monegain | 11:38 am | January 02, 2013
Employers who ignore or are only partially compliant with healthcare privacy issues could face greater government scrutiny and fines, says Philadelphia attorney Christopher Ezold.
U of Michigan Health System, Omnicell report patient data breach
By Erin McCann | 11:29 am | December 26, 2012
Approximately 4,000 patients at the University of Michigan Health System (UMHS) have been notified this December that their personal health information has been compromised after an unencrypted device containing patient medical data was stolen from the car of an Omnicell employee.
Q&A: OCR Director Leon Rodriguez talks audits and enforcements to come
By Erin McCann | 02:54 pm | December 18, 2012
For the coming new year, healthcare groups and their business associates need to get their privacy and security houses in order, as they will be facing new audits and more monetary enforcement surrounding data breaches -- this according to Leon Rodriguez, director of the Office of Civil Rights (OCR) at the Department of Health and Human Services.
NeHC lays out 4 routes to HIE success
By Mike Miliard | 12:07 pm | December 18, 2012
The National eHealth Collaborative's Health Information Exchange Learning Network has recommendations for tackling some of the most challenging HIE issues.
Health IT guru reflects back on data breach and the right way to respond
By Erin McCann | 12:05 pm | December 14, 2012
In 2011, Micky Tripathi, founder and CEO of Massachusetts eHealth Collaborative (MAeHC) and health IT industry expert, found himself in unfamiliar territory after an unencrypted MAeHC laptop containing 14,475 patient medical records was stolen from an employee's locked car. After working to rectify the situation transparently, Tripathi said no one is immune from data breaches.