Archive | Hitech Act RSS feed for this section

Breach Risk Assessment Decision Process – Software Vs. Paper

WEDI released its most recent Data Breach Notification Decision Process document, an update with Final HIPAA Omnibus Rule Breach Notification changes, but something strange stands out.  Why is an organization which is focused on “electronic data interchange” recommending a paper process?  Do you complete your taxes on paper?  Does your accountant prepare anything on paper?  […]

Read full story Comments { 0 }

What is a Meaningful Use Security Risk Analysis?

What is a Meaningful Use Security Risk Analysis and why do you have to preform one?  In short: it’s required!  ID Experts has a great little write up about Meaningful Use Security Risk Analysis, what it is and why you have to do it.  In simple terms it is a core requirement in the incentive […]

Read full story Comments { 0 }

It’s finally here! HIPAA Final Omnibus Rule Whitepaper

After years of waiting, last month HHS released the HIPAA Final Omnibus Rule.  It has since be written about by several publications and been covered by some great webinars.  Earlier today ID Experts released its highly anticipated whitepaper on the subject.   The HIPAA Final Omnibus Rule Whitepaper: HIPAA Final Omnibus Rule Whitepaper:  An Analysis […]

Read full story Comments { 0 }

EHR’s and Patient Privacy – The Ongoing Battle

EHR’s and Patient Privacy – The Ongoing Battle: “Does your dermatologist need access to your reproductive health history? Can you limit access to the psychiatric notes in your chart once they have been entered into your provider’s new electronic health record (EHR) system? It sounds absurd, but the adoption of EHRs and health information exchanges […]

Read full story Comments { 0 }

Creating a Culture of HIPAA Privacy and Security – Now With Tips!

A while back I wrote about creating a culture of privacy and security within an organization.  ID Experts, with the help of other industry experts, has just released “Five Tips to Make Patient Privacy Part of Your Organizational DNA” and it’s a great list.  The most recent trend has been towards making HIPAA privacy and […]

Read full story Comments { 0 }

Texas House Bill 300 (HB300) – Expanding on HIPAA Privacy and Security

Texas House Bill 300 (HB300) went into effect on September 1st which significantly expands patient privacy protections past that of federal laws HIPAA and HITECH.  This law is one of the most “strict” patient privacy state laws and it will be interesting to see if other states follow Texas’ lead.  HB 300 compliance deadline is […]

Read full story Comments { 0 }

Many Healthcare Organizations Still Without Data Breach Response Plans

Recently during an AHA webinar on healthcare data breaches the moderators polled to see how many attendees had Incident Response Plans, which are required under the HIPAA security rule, and the results were alarming. 44% didn’t have one, and 22% had one but never tested it, which begs the question, what are they waiting for? […]

Read full story Comments { 0 }

Who Owns Your Electronic Health Record?

As we race towards the full implementation of Electronic Health Records many of the privacy and ownership issues have not been fleshed out.  Doug Pollack wrote about ownership issues earlier this summer and the topic generated over 150 comments from all over the Health IT spectrum.  The topic was also picked up by Forbes in […]

Read full story Comments { 0 }

Who Controls Your Health Data? And Why You Should Care!

A few weeks ago Doug Pollack at ID Experts wrote an article on “Who Owns Patient Data in Electronic Health Records?”  that discussed ownership and control of EHR.  It was shared on the HIMSS LinkedIn group and gather over 150 comments.  Everyone had an option and it was very apparent that it was still a […]

Read full story Comments { 0 }

Consumer Privacy Bill of Rights – Filling in the Gaps

The Consumer Privacy Bill of Rights being pushed by the White House this year has one big flaw – and it’s an important one.  Anything that is already covered under HIPAA and HITECH is not convered by the Bill leaving a privacy purgatory for all your health information.  You have the right to a standard […]

Read full story Comments { 0 }