Category Archives: HIPAA compliance

OCR Announces HIPAA Desk Audits for Business Associates

Starting in November, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is slated to begin HIPAA compliance desk audits for business associates. This is just the beginning of OCR’s ongoing push for a permanent HIPAA audit program, which will kick into higher gear come 2017. OCR first began its Phase… Read More »

HIPAA Roundup: Pharmacy Settlements and OCR Investigations

Over the past few years, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has considerably ramped-up its enforcement efforts for HIPAA violations. Pharmacies have continued to be hit with OCR investigations and massive fines for breaches of protected health information (PHI). These investigations are often initiated for minor privacy or… Read More »

Is Apple Finally Entering the HIPAA Game?

For years, Apple has notoriously avoided stepping into the burgeoning HIPAA-compliant health-tech market. Its peers–tech giants the likes of Amazon, Microsoft, Google, and FitBit–have all willingly begun signing Business Associate Agreements (BAAs), allowing their products and services to be used across the health care industry to store, transmit, or create protected health information (PHI). So… Read More »

7 Important Reasons Why Employees Need Online HIPAA Training

Since HIPAA was first enacted in 1996, health care organizations have been required to provide periodic training to their employees to ensure that they understand what’s required of them under the law. As we know, employee training can be time consuming, expensive, and it can have a negative impact on productivity. Today, technology gives us… Read More »

Physical Therapy Provider Settles with OCR for $25,000 in PHI Breach

On February 16, 2016, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced it had reached a settlement with Complete P.T., Pool & Land Physical Therapy, Inc. (CPT) after the organization exposed the protected health information (PHI) of a number of its patients. CPT, a California-based physical therapy practice,… Read More »