Myth vs. Fact: HIPAA Compliance Implementation

Myth vs. Fact: HIPAA Compliance Implementation

Health care providers must put HIPAA rules into practice, but the law doesn’t say how. Since the HIPAA privacy rule and security rule came into effect in April 2003 and 2005 respectively, health care providers have searched for HIPAA compliance implementation...
Myth vs. Fact: Security Risk Analysis

Myth vs. Fact: Security Risk Analysis

As a company that handles protected health information (PHI), HIPAA requires you to analyze how you manage risks to your PHI. This is known as a security risk analysis (SRA). The U.S. Department of Health and Human Services says risk analyses are vital to HIPAA...
My EMR/EHR Makes Me HIPAA Compliant, Right?

My EMR/EHR Makes Me HIPAA Compliant, Right?

Far too many privacy officers lean on their electronic medical record (EMR) or electronic health record (EHR) system as a HIPAA compliance crutch. They believe (mistakenly) that an EMR/EHR system keeps their organization HIPAA compliant. Maybe that’s you. However,...