Category Archives: Latest Posts

HIPAA Social Media Rules

HIPAA was enacted several years before social media networks such as Facebook and Instagram existed, so there are no specific HIPAA compliance rules for social media. However, organizations subject to HIPAA – and their workforces – must take care how social media is used to avoid violations of HIPAA and the Federal Trade Commission Act.… Read More »

What Happens if a Nurse Violates HIPAA?

What happens if a nurse violates HIPAA Compliance Rules? How are HIPAA violations dealt with and what are the penalties for individuals that accidentally or deliberately violate HIPAA and access, disclose, or share protected health information (PHI) without authorization?   The Health Insurance Portability and Accountability Act (HIPAA) Privacy, Security, and Breach Notification Rules must… Read More »

What are the HIPAA Breach Notification Requirements?

All HIPAA covered entities must familiarize themselves with the HIPAA breach notification requirements and develop a breach response plan that can be implemented as soon as a breach of unsecured protected health information (PHI) is discovered. HIPAA training for staff must also include the procedures for reporting breaches of unsecured PHI. While most HIPAA covered… Read More »

The HIPAA Definition of Covered Entities Explained

The HIPAA definition of Covered Entities is generally explained as health plans, health care clearinghouses, and health care providers that conduct electronic transactions for which the Department of Health and Human Services (HHS) has developed standards. However, exceptions to this definition exist that can be responsible for unjustified complaints to the HHS’ Office for Civil… Read More »

Judge Denies Injunction Banning Meta from Collecting Patient Data via Meta Pixel Code

Plaintiffs in a consolidated class action lawsuit against Meta recently sought an injunction against Meta to stop the company from collecting and transmitting data collected from the websites of healthcare providers through Meta Pixel tracking code. The plaintiffs claim the use of Meta Pixel code on appointment scheduling pages and patient portals allows sensitive information,… Read More »

Lawsuit Seeking Property Insurance Cover for Ransomware Attack Fails

Cyber insurance policies can help to cover the cost of losses from ransomware attacks, but these policies are becoming more difficult to obtain. Insurers are tightening their requirements for obtaining policies and many insurers are placing limits on underwriting amounts. Premiums are also skyrocketing, putting policies out of the reach of many healthcare organizations, if… Read More »