by Gary Pritts | Nov 21, 2012 | HIPAA
With the meaningful use incentives, hospitals and physician practices are conducting their HIPAA Security Risk Analysis per 45 CFR 164.308(a)(1). The risk analysis focuses on the confidentiality, integrity and availability of health information. The last of these... Read More
by Gary Pritts | Oct 16, 2012 | HIPAA
The HITECH Act, in particular the meaningful use incentive program for physicians and hospitals, has placed the computer security risk analysis in the spotlight. Meaningful use requires a risk analysis, also called a risk assessment, as per the HIPAA Security rules in... Read More
by Gary Pritts | Jun 27, 2012 | HIPAA
Yesterday, the Alaska Department of Health and Social Services (DHSS), the state Medicaid agency, agreed to pay the U.S. Department of Health and Human Services (HHS) $1,700,000 to settle possible violations of the HIPAA Security rule. DHSS further agreed to a... Read More
by Gary Pritts | Jun 5, 2012 | HIPAA
The HITECH Act extended HIPAA enforcement authority to State Attorney Generals. As part of a cooperative enforcement effort, last year the HHS Office of Civil Rights (OCR) provided all expense paid training to the staff of the AGs. Yesterday, OCR posted the contents... Read More
by Gary Pritts | Apr 19, 2012 | HIPAA
Phoenix Cardiac Surgery, PC, a small physician practice, settled a HIPAA privacy and security complaint for $100,000 and agreed to a Corrective Action Plan. The settlement agreement (in which the practice does not admit liability) is the culmination of an... Read More
by Gary Pritts | Apr 11, 2012 | HIPAA
In this latest installment about risk analysis we continue the difficult quest to quantify risk of data breach. Hospitals and physician practices are conducting computer security risk analyses for HIPAA compliance and for meaningful use (per HIPAA Security 45 CFR... Read More
Eagle works with clients in healthcare and healthcare business associates to ensure HIPAA Security compliance. We provide a set of policy templates for a variety of business associate types including Cloud Vendors, Third Party Administrators, and Information Technology companies.