HIPAA Canada: PIPEDA The “HIPAA Canada” is known as the Personal Information Protection and Electronic Documents Act, or PIPEDA. This “HIPAA Canada” is notably different from HIPAA in several aspects. Most significantly, under PIPEDA, the data that is protected is not limited to individual health information. All personal data, health or otherwise, is protected by… Read More »
Brought to you by www.singlehop.com
“With big data, comes big responsibility,” says Office for Civil Rights (OCR) Director Roger Severino. This is just a fragment of the insight he gave into upcoming HIPAA enforcement trends in his plenary talks at Health Datapalooza 2017. Severino, the newly appointed Director of the Department of Health and Human Services’ (HHS) OCR, spoke about… Read More »
Recently, health care professionals have reported being solicited by organization fraudulently presenting themselves as federal entities. Instead of typical phishing emails involving a hack, one IT security firm based out of Miami, Florida is posing as HHS as a part of its marketing efforts. Emails sent from the account appear to steal legitimate HHS letterhead and conclude… Read More »
Starting in November, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is slated to begin HIPAA compliance desk audits for business associates. This is just the beginning of OCR’s ongoing push for a permanent HIPAA audit program, which will kick into higher gear come 2017. OCR first began its Phase… Read More »
The NFL has reported that thousands of players’ health care records were breached in late April after a laptop was stolen from the car of a Washington Redskins trainer. The records are extensive, dating back a full 13 years. They’re reported to include current and former players’ protected health information (PHI), as well as that… Read More »
For years, Apple has notoriously avoided stepping into the burgeoning HIPAA-compliant health-tech market. Its peers–tech giants the likes of Amazon, Microsoft, Google, and FitBit–have all willingly begun signing Business Associate Agreements (BAAs), allowing their products and services to be used across the health care industry to store, transmit, or create protected health information (PHI). So… Read More »
After seven years of illegally accessing the protected health information (PHI) of 1,620 patients, an employee at UnityPoint Health’s Allen Hospital in Waterloo, Iowa has been reported to the Department of Health and Human Services (HHS) for federal investigation. Officials at the hospital say that the breach was first uncovered on March 14, 2016. The… Read More »
Receiving HIPAA breach notification letters in the mail has become a disappointingly commonplace occurrence for many Americans over the past few years. In a single breach alone last February, as many as 80 million individuals had their protected health information (PHI) breached by Anthem. HIPAA regulation mandates that breaches be reported to affected patients informing… Read More »
USB drives loaded with malware were mistakenly mailed by the American Dental Association (ADA) to its members earlier this month. According to investigative reporter Brian Krebs, the issue first came to light after an ADA member posted on a security forum saying that he was suspicious of the integrity of the drive when he first received it.… Read More »