Blog Archives

So, I was checking my crystal ball…..

I needed to write an article and was looking for ideas and figured the crystal ball thing worked so well I should check it again.  Really, no, I didn’t use one but it sure felt like it when I read the notice published about the Baylor Medical Center’s breach. Baylor Regional Medical Center has notified 1,981 […]

Read More

Are your BAs hiring Gilligan, Gomer, or Barney?

It is becoming increasingly apparent that Business Associates should be taking their responsibility more seriously than they have in the past.  Although, the past could be in previous years or, for some, just yesterday.  The recent settlement of the class-action lawsuit against Stanford Hospital & Clinic over a PHI breach should provide the impetus to […]

Read More

Add More To Your HIPAA Heartbleed Review List

Just as I mentioned in my earlier post on Heartbleed, there would be more to come.  Just hours after finishing that article I was reading the latest articles on the status of the situation.  This thing seems to get worse every day to many people.  I am not as shocked by the number of devices […]

Read More

Heartbleed HIPAA Documentation

If you haven’t considered your HIPAA requirements for Heartbleed yet you should probably get started sooner rather than later.  If you don’t run a site that needed a patch you almost certainly use one or more on a regular basis.  This is a perfect time to create nice clean issue resolution documentation to show that […]

Read More
Bite the Bullet

5 Tips to Just Get Your Risk Analysis Done

Doing a Security Risk Analysis is high on many lists right now.  Not only is it the number one thing OCR has defined as not being done properly, but it is also a required element for Meaningful Use attestation.  We have been getting a lot of traffic to our Risk Analysis Content page most likely […]

Read More

Breach Is Gonna Get You!

Gamblers spend years and fortunes trying to “beat the odds” often to no avail.  They know they are taking a major risk but they are looking for the big payoff.   If you are a numbers person, you boil things down to statistics or dollars and cents.  Those numbers help you make decisions based on […]

Read More

HHS Resolution Theme Song Nomination: I’m Henry the Eighth, I Am

The resolution agreement with Adult & Pediatric Dermatology seems like the problems have mostly been heard before.  It isn’t new, they seem to all have a similar verse.  Therefore, I nominate the Herman’s Hermits tune I’m Henry the VIII, I Am as the official theme song to be played when the next one is announced. Actually, […]

Read More

Simple HIPAA Checklist – Well Sort of

I am very behind on my blogs lately due to a lot of distractions at work and at home.  I can really relate when a client asks me why I can’t just make a simple HIPAA checklist.  That is what they really need and want because they are just too busy dealing with all the […]

Read More

A Cloud Based EMR Does Not A Compliant Entity Make

Recently, a question came up that involved entities that said they are perfectly fine with HIPAA compliance because they use a cloud based EMR (or EHR) who takes care of all their HIPAA compliance for them. A discussion ensued ending with the question:     This can’t really be true, can it? I suppose someone […]

Read More

Aristotle, Galileo and Newton’s Laws Apply to the Omnibus Final Rule Deadline

Aristotle first started to theorize about the laws of physics including the law of inertia.  Galileo restated Aristotle a bit and added his own twists to the concepts.  When we finally got Newton’s two cents added we got to this scientific statement:  A body will keep its speed and direction so long as no force […]

Read More