Search results for Hipaa

Client Alert: The Government May Actually Be Here to Help – Health Insurance Portability and Accountability Act of 1996...

The United States Department of Health and Human Services (HHS) provides a helpful set of questions and answers on its website regarding the Health Insurance Portability and Accoun...

Why It’s Important for a Clinic to be HIPAA Compliant

In today’s healthcare landscape, protecting patient information through HIPAA has become more critical […]

AHA urges delay on TEFCA individual access SOP over patient privacy concerns

The AHA April 24 urged the Sequoia Project to delay implementation of the Trusted Exchange Framework and Common Agreement Individual Access Services Exchange Purpose Standard Opera...

HIPAA Modernization: HHS’s Proposed Privacy and Security Rule Updates [Podcast]

In this episode, Gabe Scott, Sarah Carlins, and Myia Pretty discuss two significant proposed HIPAA rulemakings, including updates to the HIPAA Security Rule and proposed modificati...

Why Most Virtual Assistant Companies Cannot Sign a HIPAA BAA (And Why It Matters)

Difficulty: Intermediate Impact: High Reading Time: 18 min HIPAA Compliance Business Associate Agreement Healthcare Virtual Assistants Contractor vs. Employee Model OCR Enforcement...

Five Former Methodist Hospital Employees Charged with HIPAA Violations

Five Former Methodist Hospital Employees Charged with HIPAA Violations

In the blogs: HIPAA HIPAA hooray

IT hygiene; final tally; movements in the U.S. dollar; and other highlights from our favorite tax bloggers.

Standing at the Crossroads: Fourth Circuit to Decide Who Can Challenge HIPAA Administrative Subpoenas

With Congress actively considering proposed federal privacy legislation[1] that could establish a national standard and federal agencies simultaneously pursuing broader access to s...

OCR Announces HIPAA Enforcement Action Against Self-Funded Group Health Plan

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently announced a HIPAA enforcement action against an employer-sponsored group health plan....

HIPAA compliant AI

The best way to run AI and remain HIPAA compliant is to run it locally on your own hardware, instead of transferring protected health information (PHI) to a remote server by using...

10 Things to Know About HIPAA & Access to a Relative’s Health Information

Have you ever had questions about what might be going on with an older loved one’s health? But then you find that your older relative is unable — or unwilling — to let you in on th...

Because NIST Alignment Isn’t Enough: OCR’s Risk Management Message Under the HIPAA Security Rule

In April 2026, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) released “Risk Management Under the HIPAA Security Rule,” a YouTube presentation addre...

OCR Extends HIPAA Enforcement Reach to Employer-Sponsored Health Plans

Non-healthcare companies are often surprised to learn that the Health Insurance Portability and Accountability Act (HIPAA) applies to their employer-sponsored health plans and that...

LuxSci Launches Enterprise-Grade HIPAA-Compliant Email Security for Mid-Sized Healthcare Organizations

Cambridge, MA, 5th May 2026, CyberNewswire

LuxSci Launches Enterprise-Grade HIPAA-Compliant Email Security for Mid-Sized Healthcare Organizations

Cambridge, MA, 5th May 2026, CyberNewswire

Healthcare’s Identity Crisis: Why A Single Prescription Requires Multiple Logins

Now is the time to solve the industry’s identity crisis, and it can only be done through a combination of phishing-resistant and adaptive MFA, fine-grained access control, and stan...

[Video] DOJ’s Bulk Sensitive Data Transfer Rule: Key Insights for Health Care Compliance Teams – Diagnosing Health Care

What health care and life sciences organizations need to know: • “Bulk” Has a New Definition: The volume thresholds under the U.S. Department of Justice’s (DOJ’s) Bulk Sensitive D...

Why Some Hospitals Won’t Be Able to Comply With Upcoming HIPAA Updates

The first major update to HIPAA in more than a decade will eliminate the distinction between “required” and “addressable” safeguards, making key cybersecurity and physical security...

A First Among OCR Enforcements: Publicly Traded Energy Co. Pays $245K After Employer Plan’s Breach

For most of its HIPAA enforcement history, the HHS Office for Civil Rights (OCR) has engaged in a remarkably similar pattern with (allegedly) noncompliant healthcare organizations:...

Diagnosing Health Care® – Episode 93: DOJ’s Bulk Sensitive Data Transfer Rule: Key Insights for Health Care Compliance T...

What health care and life sciences organizations need to know: “Bulk” Has a New Definition: The volume thresholds under the U.S. Department of Justice’s (DOJ’s) Bulk Sensitive Dat...

Vorys Benefits Brief: Responding to a Breach of HIPAA-Protected Information - Guidance for Employers

On January 13, 2025, Conduent Business Services LLC (Conduent) discovered it was the subject of a cybersecurity incident involving unauthorized access to its systems between Octobe...

Patient privacy laws lack clarity

Trump and Kennedy Seek To Relax Safeguards for AI Healthcare Tools

For years, the Department of Health and Human Services built standards to make sure electronic health records were user-friendly and offered transparent advice to doctors. Now they...

The Expanding AI Ecosystem: How PHI Can Quietly Leave the Healthcare Environment

The following is a guest article by Dennis P. Sweeney, MBA, Co-Founder of Vertebrai Solutions Inc., and Consulting Principal at Tellogic Inc. Healthcare organizations are rapidly a...