HIPAA Enforcement

This topic includes reports and details of HIPAA Privacy and Security Rule enforcement. We discuss the actions that the HHS Office of Civil Rights (OCR), the Department of Justice, as well as the State Attorneys General take.

Eagle works with clients in healthcare and healthcare business associates. In addition, we work with other HIPAA covered entities to ensure HIPAA Security compliance.

HIPAA covered entities are essential. It’s important to note that there is a HIPAA privacy and security rule to follow. And, we work with healthcare businesses to make certain they have protected health information. Hospitals and businesses are responsible for enforcing HIPAA security and we can assist.

We provide a set of policy templates for a variety of business associate types. Our templates include Cloud Vendors, Third Party Administrators, Healthcare, and Information Technology companies.

HHS provides details on Phase 2 of random HIPAA audit program

by Gary Pritts | May 14, 2014 | HIPAA

On March 31, the HHS Office for Civil Rights (OCR) finally provided details on what the next phase of its HIPAA audit program will look like. These are outlined in detail in their presentation (slides here) and also in this article written by Adam Greene and Rebecca... Read More

NY Presbyterian, Columbia University Settlement highlights importance of PHI application inventory

by Gary Pritts | May 9, 2014 | HIPAA

The recent situation at NY Presbyterian Hospital/Columbia University Medical Center that resulted in the largest-to-date HIPAA settlement of $4.8 Million, highlighted that security leadership wasn’t aware of all of the applications running on their system. Reading... Read More

N.Y. Presbyterian, Columbia Resolution Clarify HHS Expectations for IT Asset Inventory in Largest HIPAA Settlement

by Gary Pritts | May 8, 2014 | HIPAA

The largest HIPAA settlement ever, in the amount of $4.8 Million, by two affiliated organizations, NY Presbyterian and Columbia University, sheds light on HHS expectations for HIPAA compliance, at least for a large academic medical center with 24,000 employees. The... Read More

Tufts Health Plan data breach affects 9,000 Medicare subscribers

by Gary Pritts | Apr 26, 2014 | HIPAA

Tufts Health Plan, who offers health insurance plans for Medicare Advantage, individual or group health insurance in Massachusetts and Rhode Island, announced in an April 24 press release that a security breach had exposed the personal information of 8,830 seniors who... Read More

Concentra Health and QCA Health Plan settle with OCR over HIPAA violations

by Gary Pritts | Apr 23, 2014 | HIPAA

Stolen laptops have led to major HIPAA enforcement actions, announced yesterday, for two more covered entities. Concentra Health Services (Concentra) and QCA Health Plan, Inc. of Arkansas have paid the HHS Office for Civil Rights (OCR) $1,975,220 collectively to... Read More

« Older Entries

Next Entries »

HIPAA Enforcement

HHS provides details on Phase 2 of random HIPAA audit program

NY Presbyterian, Columbia University Settlement highlights importance of PHI application inventory

N.Y. Presbyterian, Columbia Resolution Clarify HHS Expectations for IT Asset Inventory in Largest HIPAA Settlement

Tufts Health Plan data breach affects 9,000 Medicare subscribers

Concentra Health and QCA Health Plan settle with OCR over HIPAA violations

Eagle Topics

Eagle Consulting Solutions

Get Our Newsletter

Recent Posts

HIPAA Policies – Instant Downloads

Pin It on Pinterest