Heartbleed HIPAA Documentation

If you haven’t considered your HIPAA requirements for Heartbleed yet you should probably get started sooner rather than later.  If you don’t run a site that needed a patch you almost certainly use one or more on a regular basis.  This is a perfect time to create nice...

Simple HIPAA Checklist – Well Sort of

I am very behind on my blogs lately due to a lot of distractions at work and at home.  I can really relate when a client asks me why I can’t just make a simple HIPAA checklist.  That is what they really need and want because they are just too busy dealing with all the...

Do Your BA Due Diligence

Long gone are the days that you pull down a template Business Associate Agreement and everyone just signs it.  BAs may not understand the extent of their obligations under HIPAA.  You need to confirm your agreements plus check what they are really doing to comply. I...

Encryption is the Key to HIPAA’s Security Rule Heart

So you’ve heard the presentations, classes and consultants tell you that you should encrypt everything.  Encryption is also a security rule standard that is listed as addressable, not required.  Let’s talk about what all that means. You must address encryption as part...