HIPAA Compliance ...
Follow
Find
40 views | +0 today
Rescooped by Tony Hardman from Medical Device Hacking
onto HIPAA Compliance Seal
Scoop.it!

Most Data Breaches Caused by Human Error, System Glitches

Most Data Breaches Caused by Human Error, System Glitches | HIPAA Compliance Seal | Scoop.it
Companies can significantly decrease the cost of data breaches by teaching employees not to cut corners and by adopting a strong security posture and an incident response plan.
Tony Hardman's insight:
What Manufacturers Should Do to Build Secure Devices - http://bit.ly/19gsZUe
more...
Tony Hardman's curator insight, June 19, 2013 2:14 PM

Healthcare Interrupted -
Top Five Vulnerabilities Hackers Can Use Right Now To Shut Down Medical Devices http://bit.ly/12TDPR5

Your new post is loading...
Rescooped by Tony Hardman from Medical Device Hacking
Scoop.it!

Most Data Breaches Caused by Human Error, System Glitches

Most Data Breaches Caused by Human Error, System Glitches | HIPAA Compliance Seal | Scoop.it
Companies can significantly decrease the cost of data breaches by teaching employees not to cut corners and by adopting a strong security posture and an incident response plan.
Tony Hardman's insight:
What Manufacturers Should Do to Build Secure Devices - http://bit.ly/19gsZUe
more...
Tony Hardman's curator insight, June 19, 2013 2:14 PM

Healthcare Interrupted -
Top Five Vulnerabilities Hackers Can Use Right Now To Shut Down Medical Devices http://bit.ly/12TDPR5

Rescooped by Tony Hardman from Pharma Law
Scoop.it!

HIPAA Omnibus Rule Means Tighter Security, Privacy & Compliance - eDocSecure Compliance Solutions | HIPAA-HITECH Consulting

HIPAA Omnibus Rule Means Tighter Security, Privacy & Compliance - eDocSecure Compliance Solutions | HIPAA-HITECH Consulting | HIPAA Compliance Seal | Scoop.it

HIPAA Omnibus Rule Means Tighter Security, Privacy & Compliance (http://t.co/m3sAT2XvdR)


Via Darshan
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from Pharma Law
Scoop.it!

The Complexity of Data Privacy and Compliance under HIPAA-HITECH

The Complexity of Data Privacy and Compliance under HIPAA-HITECH | HIPAA Compliance Seal | Scoop.it

The federal government released final rules pertaining to Privacy, Security, and Breach reporting compliance under the Health Information Technology for Economic and Clinical Health (HITECH) Act.


Via Darshan
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from Pharma Modeling
Scoop.it!

Building HIPAA compliance, patient privacy investment business cases

Selling senior leadership on HIPAA compliance and patient privacy investments is difficult; here are tips to help outline the business case.

Via AnalyticsInnovations
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from healthcare technology
Scoop.it!

Can Health Care Data Be Secure in the Cloud?

Can Health Care Data Be Secure in the Cloud? | HIPAA Compliance Seal | Scoop.it

The cloud computing market in health care is expected to reach $5.4 billion by 2017 according to a recent study. In the past, the healthcare industry has been extremely resistant to embracing the cloud; however, today more healthcare organizations are rapidly moving their infrastructure and data to the cloud. 

 

Despite the accelerated move towards cloud adoption, it is important for pharma, biotech, SaaS providers, and other healthcare organizations to tread lightly regarding sensitive and HIPAA related information in the cloud.

Applying security best practices is vital to protecting data that rests in the cloud.

 

The benefits of the cloud are too big to ignore

– About 300% Global health care cloud computing revenue is expected to increase from $1.8 billion in 2001 to $5.4 billion by 2017

Easy to spin resources up and downAccessible and portable dataReduce CAPEX spendHigh Performance/capacityShift IT focus process to innovationIdeal for big data compute jobsStill, sensitive Personally Identifiable Information is at risk.Patient NamesDiagnosesMedicationsHospital RecordsInsurance IDsSocial Security NumbersBilling InformationGenetic History 


Via nrip
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from CLABSI
Scoop.it!

Want to Impress OCR During a HIPAA Audit? Write a Book

Want to Impress OCR During a HIPAA Audit? Write a Book | HIPAA Compliance Seal | Scoop.it

Here is a tutorial from the Cleveland Clinic on maximizing proof of HIPAA privacy/security rule compliance through organized documentation by making a Book of Evidence.


Via Jenni Lawrence
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from Business Transformation
Scoop.it!

Walgreens must pay woman $1.44 million over HIPAA violation

Walgreens must pay woman $1.44 million over HIPAA violation | HIPAA Compliance Seal | Scoop.it

A Marion County jury Friday awarded a woman $1.44 million after finding Walgreens and a pharmacist violated her privacy when the pharmacist looked up and shared the woman’s prescription history.


Via Karl Wabst
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
Karl Wabst's curator insight, July 29, 2013 10:12 AM

The breach happened when 1 pharmacist knowingly broke company policy. She decided to look at the records of a woman that her husband had a child with. This case should remind us that privacy is often not a matter of technology. People make bad choices. Computers only serve the data.

Interestingly though, Walgreens is planning to appeal the verdict because "We believe it is a misapplication of the law to hold an employer liable for the actions of one employee who knowingly violates company policy."

If they win the appeal, it would have ramifications on any lawsuit involving the actions of an employee that result in harm. Imagine having to sue the employees who...fill in the blank.

Good luck collecting on that damage award.

Scooped by Tony Hardman
Scoop.it!

With $7M, ClearData courts healthcare with HIPAA-compliant cloud ...

With $7M, ClearData courts healthcare with HIPAA-compliant cloud ... | HIPAA Compliance Seal | Scoop.it
ClearData Networks, a health-specific cloud storage startup has raised $7 million from Norwest Venture Partners and Excel Venture Management.
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Scooped by Tony Hardman
Scoop.it!

PrawfsBlawg: Introduction & Corporate Compliance Monitors

PrawfsBlawg: Introduction & Corporate Compliance Monitors | HIPAA Compliance Seal | Scoop.it
I will begin by explaining what I mean by the term "corporate compliance monitor." After a corporation is found to have engaged in misconduct, it has become commonplace for the government to enter into an agreement with ...
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Scooped by Tony Hardman
Scoop.it!

German justice minister proposes ban for US firms that don’t abide privacy laws

German justice minister proposes ban for US firms that don’t abide privacy laws | HIPAA Compliance Seal | Scoop.it
Meanwhile, German spy agency (BND) is passing metadata on to the NSA.
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from Electronic Health Information Exchange
Scoop.it!

HIPAA Security Lessons from a Michigan Healthcare CIO - Managed Data Center News

HIPAA Security Lessons from a Michigan Healthcare CIO - Managed Data Center News | HIPAA Compliance Seal | Scoop.it
HealthITSecurity.com recently conducted an interview with Frank Fear, CIO of Memorial Hospital in Michigan, a medium-sized healthcare organization with approximately 1,000 desktops to manage.

Via NY HealthScape
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from Data Nerd's Corner
Scoop.it!

Meeting the HIPAA Omnibus Rule Compliance Deadline: What Providers Need to Know


Via Carla Gentry CSPO
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
Carla Gentry CSPO's curator insight, July 23, 2013 7:55 AM

In order to comply with the Omnibus Rule, providers must update their internal privacy policies to reflect the changes to the HIPAA Privacy Rule, Security Rule, and Breach Notification Rule. Below are certain key changes that a provider will likely need to make to its internal privacy policies. - See more at: http://www.mcguirewoods.com/Client-Resources/Alerts/2013/6/Meeting-HIPAA-Omnibus-Rule-Compliance-Deadline-What-Providers-Need-Know.aspx#sthash.EEc4BIiU.dpuf

Rescooped by Tony Hardman from Business Transformation
Scoop.it!

HIPAA Breaches in the Cloud

HIPAA Breaches in the Cloud | HIPAA Compliance Seal | Scoop.it

Two recent incidents at Oregon Health & Science University involved inappropriate storage of unencrypted patient information in the cloud.


Via Karl Wabst
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
Karl Wabst's curator insight, August 1, 2013 10:12 AM

Changes to HIPAA regulations, adoption of cloud technologies and lack of training are being blamed for a privacy / security breach.

 

3 thoughts:

 

Organizational change, e.g. new regulations and / or technologies greatly increases the likelihood of errors and fraud. Focusing on the technical changes and giving limited attention to people / behavior change is going to increase failure.

 

Physicians violated policy by posting data on 3,000 patients in unencrypted spreadsheets so they could share information. Certainly, the hospital failed in training and monitoring the behavior of its employees.

 

The hospital did not have a BA Agreement with Google, even though the TOS indicate data stored with the Internet-based provider "can be used for the 'purpose of operating, promoting, and improving its services, and to develop new ones. Never give vendors permission to use your proprietary / sensitive data to develop new services! This is bad business practice. Vendors / Partners can easily become competitors. Why give them an edge?

 

 

Rescooped by Tony Hardman from Dental News from the Smile Generation
Scoop.it!

HIPAA concerns drive cloud-based data sharing

HIPAA concerns drive cloud-based data sharing | HIPAA Compliance Seal | Scoop.it
Do you use Dropbox, YouSendIt, or email to send images and other patient data to your lab or colleagues? If so, you might want to rethink the practice, given the growing emphasis on HIPAA compliance and patient privacy.

Via The Smile Generation
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Scooped by Tony Hardman
Scoop.it!

Deadline To Update HIPAA Materials Is September 23, 2013 - Mondaq News Alerts (registration)

Deadline To Update HIPAA Materials Is September 23, 2013 - Mondaq News Alerts (registration) | HIPAA Compliance Seal | Scoop.it
Deadline To Update HIPAA Materials Is September 23, 2013
Mondaq News Alerts (registration)
The final rules went into effect on March 26, 2013; covered entities and business associates must comply with the final rule by September 23, 2013.
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from Surfing the Broadband Bit Stream
Scoop.it!

Why Metadata Matters | Privacy Identity Innovation | pii 2013 Conference

Why Metadata Matters | Privacy Identity Innovation | pii 2013 Conference | HIPAA Compliance Seal | Scoop.it

In the weeks since Guardian reporter Glenn Greenwald broke the news about the NSA’s secret surveillance programs, there’s been a lot of talk in the media, on Capitol Hill and elsewhere about “metadata.” What that talk has revealed is that not everyone understands what metadata is and why it’s important from a privacy perspective (of course, some people understand metadata but suggest there’s nothing to worry about).

 

To clear up what she describes as some of the “myths” about metadata, Ontario’s Information & Privacy Commissioner Ann Cavoukian published a report earlier this month titled “A Primer on Metadata: Separating Fact from Fiction.”  Dr. Cavoukian is probably best known as the founder and chief evangelist of Privacy by Design, a framework which advocates embedding privacy protections into product development and business practices from the outset to give users more control over their personal data.

 

In her new report, she makes the case that metadata may be more revealing than content itself. Some government officials have tried to downplay the importance of the NSA’s metadata collection, for example, by explaining that it doesn’t allow the government to listen in to what you’re saying on the phone. However, as Dr. Cavoukian and other privacy advocates argue, metadata that includes the numbers you call, when those calls are made, how long they last, and your phone’s interaction with cellphone towers can be used to create a detailed picture of where you spend your time, what you do and whom you interact with.

 

Click headline to read more and watch video clip--


Via Chuck Sherwood, Senior Associate, TeleDimensions, Inc
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Rescooped by Tony Hardman from ISO IEC 17025 Requirements and Tool Kits for Laboratory Accreditation
Scoop.it!

Social Media Compliance for Healthcare Professionals | HIPAA Compliance : Compliance Training Webinar (Online Seminar) - ComplianceOnline.com

Learn HIPAA's social media compliance requirements for privacy and security for patient information while communicating through Twitter, Facebook, and LinkedIn.

Via complianceon
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
complianceon's curator insight, August 6, 2013 2:21 AM
Learn HIPAA's social media compliance requirements for privacy and security for patient information while communicating through Twitter, Facebook, and LinkedIn.http://www.complianceonline.com/ecommerce/control/trainingFocus/~product_id=703050?channel=SBMorganic
Scooped by Tony Hardman
Scoop.it!

HHS Inspector General: Obamacare Privacy Protections Way Behind Schedule ... - Forbes

HHS Inspector General: Obamacare Privacy Protections Way Behind Schedule ... - Forbes | HIPAA Compliance Seal | Scoop.it
Economic Times
HHS Inspector General: Obamacare Privacy Protections Way Behind Schedule ...
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Scooped by Tony Hardman
Scoop.it!

OFF Pocket Is A Privacy Pouch For Your Phone That Blocks Cellular ...

OFF Pocket Is A Privacy Pouch For Your Phone That Blocks Cellular ... | HIPAA Compliance Seal | Scoop.it
The OFF Pocket is the latest privacy accessory from the creator of the spy-drone blocking stealth hoodie. It's a water-resistant metal-fabric pouch desig..
Tony Hardman's insight:
Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.
Scooped by Tony Hardman
Scoop.it!

4 of 9 HIPAA Network Considerations - Cisco Blog

4 of 9 HIPAA Network Considerations - Cisco Blog | HIPAA Compliance Seal | Scoop.it
Become informed and leave behind the 'Ignorance is Bliss' mantra. Understand the potential costs to your organization due to a breach of PHI.
Tony Hardman's insight:

 

Contemplating a HIPAA Compliance Seal

 

The Pros and Cons of 3rd Party Attestations

http://blog.securestate.com/contemplating-a-hipaa-compliance-seal/

more...
No comment yet.