A home healthcare company has filed 17 breach reports after a ransomware attack on its cloud-based electronic health records vendor last December, illustrating once again how a vendor breach can have a wide impact.
Hundreds of pediatric healthcare providers in Massachusetts were still unable to access their electronic health record systems Thursday after a malware attack earlier this week on a large physician network affiliated with Boston Children's Hospital. What can others learn from the incident?
As healthcare providers around the world prepare to deal with potential cases of the novel coronavirus, U.S. regulators are reminding organizations about their HIPAA compliance duties involving patient privacy, including permitted data disclosures for public health activities.
As health data privacy concerns heat up to a boiling point on multiple fronts, it's more essential than ever that patients get a clear opportunity to make a choice about whether their data is shared, says privacy advocate Twila Brase, who heads the Citizens' Council for Health Freedom.
As the wait continues for federal regulators to issue final rules for health IT interoperability and information blocking prevention, some industry stakeholders are raising serious concerns about the privacy of patient data accessed and shared using application programming interfaces and mobile consumer apps.
A federal court has invalidated certain HITECH Act provisions and Department of Health and Human Services' guidance related to patient requests for copies of their health records, creating new requirements for compliance officers and others to follow.
Federal prosecutors say Practice Fusion - a unit of Allscripts - will pay $145 million to settle civil and criminal investigations related to its electronic health records system. The case includes a kickback scheme involving opioids as well as false claims regarding HITECH Act certification compliance.
HHS has issued a draft of a five-year strategic health IT plan that is largely focused on providing patients with secure access to their health information as well as supporting secure, interoperable health information exchange among providers.
The Internet of Medical Things (IoMT) has disrupted the future strategy of healthcare organizations and market segments. Security breaches have become a major concern for providers, and with the increase in high-profile hacks and hospitals' growing dependence on IoMT devices, cybersecurity is of absolutely critical...
For the second time in recent months, federal regulators have slapped a healthcare provider with a HIPAA financial settlement in a case involving patients' rights to access their health information. Why is this an ongoing compliance problem?
The Australian government's digital health records program manages risk and privacy relatively well, according to a new audit, but there's room for improvement in third-party risk management and emergency access to sensitive health records.
As 2020 approaches, healthcare experts forecast necessary information security priorities for the coming year. They will also look back at the mistakes made over the past decade.
Healthcare organizations continue to grow and change at an unprecedented velocity. With 2019 outpacing previous years for acquisitions,...
Enforcing patients' rights under HIPAA to access their health information - including via health apps - is a top policy initiative at the HHS Office for Civil Rights, Director Roger Severino said in a Wednesday presentation. He also said a $2.1 million HIPAA penalty would be announced soon.
How might a national unique patient identifier improve the accuracy of patient record matching and potentially help address identity fraud? Julie Dooling of the American Healthcare Information Management Association - which has been lobbying for the development of such an ID - makes the case.