HIPAA
Redlined version of the HIPAA rules, as amended on 1/25/2013 by the HIPAA Omnibus Rule amendments. Eagle Omnibus Rule INDEX
Eagle works with clients in healthcare and healthcare business associates to ensure HIPAA Security compliance. We provide a set of policy templates for a variety of business associate types including Cloud Vendors, Third Party Administrators, and Information Technology companies.
Vendor Risk Highlighted by Medhost Backdoor
This month Carnegie Mellon University’s CERT Division issued an advisory regarding a flaw in Medhost’s Perioperative Information Management System (PIMS). PIMS is a widely used suite of applications for surgery departments to manage surgical cases from... Read MoreHIPAA Breach Reports – Spring 2015
Despite the high stakes, some healthcare providers have been rather blasé about security. But, a failure to comply with HIPAA rules can lead not only to penalties of up to $50,000 per record depending on the level of negligence but also to a class action suit in a civil court and criminal charges. What can you do about that?
Read MoreOCR Launches Random HIPAA Audits, Phase 2
The HITECH Act, enacted by Congress in February 2009, mandated that the HHS Office for Civil Rights (OCR) enhance its enforcement efforts through the use of random HIPAA audits. OCR conducted a pilot audit program in which an audit protocol was created and 115 covered... Read MoreOCR Active with HIPAA Enforcement
Over the last 6 months the HHS Office of Civil Rights (OCR) has announced an average of a settlement or other enforcement action per month. While most affected organizations were hospital systems or national companies, one small organization also was included. Here is... Read MoreOrthopaedic Practice Fined $750,000 for HIPAA Violation
An Orthopaedic Practice fined $750,000 for HIPAA Violations, is learning the hard way that they needed to have a business associate agreement (BAA) in place. The settlement comes after an alleged breach 17,300 patient’s information.
Read More