HIPAA Blog

New CMIA Law Strengthens CA Medical Privacy

  The state of California is no different than other states when it comes to existing loopholes in federal laws and regulations. These loopholes continue to allow for breaches of patient health information (PHI). Common ways that patient information has been leaked are from the Explanation of Benefits letters and communications from Health Insurance plans. Each... Continue reading

How to Dispose of PHI Data

The HIPAA privacy and security rules require certain steps be taken during the destruction or removal of PHI (protected health information). These portions of the act mandate "reasonable safeguards to limit incidental, and avoid prohibited, uses and disclosures of PHI." What this means is that if HIPAA data is left in a trash can or an old hard drive that is replaced and discarded, HIPAA is violated.

HIPAA Hosting Price Comparisons

When choosing a HIPAA hosting plan, the difference in price between providers (and different plans offered by the same provider) is often driven by the features offered in that hosting environment. Not every hosting environment is the same. In fact, no two are exactly alike. Aside from the absolute minimum amenities required by HIPAA, every host is obliged to offer a variety of options to fit a variety of implementations.

Patient Privacy For The Digital Age

Federal law mandates that patient privacy is protected by means of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This federal mandate was created to provide patient privacy for U.S. citizens. HIPAA compliance regulations are used as security standards for the protection and confidentiality of healthcare information. HIPAA is used to regulate protected... Continue reading

Are Windows Desktop Platforms HIPAA Compliant?

First, Windows is not inherently non-HIPAA compliant. It is possible to set up a workstation built on the Windows platform that fulfills all of the requirements

HIPAA Logs have Strict Retention Requirements

HIPAA compliance necessarily involves comprehensive standards and procedures, vital for protecting Patient Health Information. While Covered Entities and Business Associates are bound by the laws of their particular state with regard to how long medical records must be retained, the regulations concerning HIPAA logs are different. For example, HIPAA requires that you keep track of who accesses protected... Continue reading

HIPAA Compliant CMS Choices

A CMS (Content Management System) is an easy-to-use and convenient way to build and manage your website and to update content quickly and efficiently. A CMS platform requires very little technical prowess and minimal knowledge (if any) of website coding. Being responsible for protecting patient privacy, extra steps need to be taken to ensure that... Continue reading

Bring Your Own License for HIPAA Compliant Hosting

To many in the field of HIPAA software and HIPAA hosting, being forced to use any particular solution or implementation is less than ideal. One of the ways in which covered entities often feel that they are “nickel-and-dimed” is in the matter of software licensing. A piece of software that interacts with or stores HIPAA... Continue reading

Designing a Database Structure to Maximize Your EMRs

Databases, specifically Structured Query Language (SQL) databases, are known for being a weak point in the different layers of security that online businesses must implement to be safe-and-secure from cyber attacks. SQL injection attacks are responsible for many of the most egregious violations of consumer data and privacy. But in the field of healthcare and... Continue reading

Meaningful Use Requirements for Patient Data

While many covered entities use electronic medical systems instead of recording patient data with pen-and-paper, information recording via electronic medical records is much faster. The Medicaid EHR incentive program has been put into place to help motivate healthcare providers to better utilize the capabilities of these systems. “Meaningful Use” is a legal term that refers... Continue reading