Monthly Archives: March 2011

HHS getting stricter at business process failures causing HIPAA violations

U.S. Department of Health and Human Services made two announcements last month: 1. It had imposed a civil monetary penalty of $4.3 million on health insurer Cignet Health for violating the Health Insurance Portability and Accountability Act’s privacy provisions. 2. The Massachusetts General Hospital had agreed to pay HHS a total of $1 million to … Continue reading

Official announcement made for the training of state attorney generals to file federal lawsuits

It was recently announced that training for state attorneys general on how to file a HIPAA federal civil lawsuit will be offered this spring. Thought the HITECH Act enabled state attorneys general to file the federal lawsuits, not many such actions have been taken apart from a few cases like the lawsuit filed by former … Continue reading

Is your sensitive medical data secured with your web application?

Big organizations often need web applications to handle and manage their medical information but with strict HIPAA compliance Rules, the healthcare providers need to ensure that they are entrusting their sensitive PHI data to vendors and partners who are as vigilant as they themselves are in protecting PHI. As such when choosing your web designer … Continue reading

Knowing about Patient Safety and Quality Improvement Act

The regulation implementing the Patient Safety and Quality Improvement Act of 2005 (PSQIA) was published on November 21, 2008, and became effective on January 19, 2009. PSQIA establishes a voluntary reporting system to enhance the data available to assess and resolve patient safety and health care quality issues. To encourage the reporting and analysis of … Continue reading

Knowing about Advanced Encryption Standard (AES)

HIPAA data encryption standards require health care providers, health insurance companies and business associates who transmit, store or access protected health information in electronic form to utilize a standardized level of data encryption. The Advanced Encryption Standard (AES) is Federal Information Processing Standards (FIPS) approved cryptographic algorithm used to protect electronic data and is quite … Continue reading