2018 and HIPAA - Healthcare Support Central

April 2025 Healthcare Data Breach Report

The HIPAA Journal

MAY 21, 2025

These are likely to continue to be reported by affected HIPAA-regulated entities over the next few weeks. In April, at least 6 HIPAA-regulated entities reported breaches with placeholder figures. Geographical Distribution of Healthcare Data Breaches HIPAA-regulated entities in 29 U.S.

Business Associate

Business Associate HIPAA Hospital Insurance

HHS-OIG Audit Finds Security Gaps at Large Northeastern Hospital

The HIPAA Journal

JULY 28, 2025

Between 2018 and 2022, there was a 93% increase in large data breaches reported to the HHS’ Office for Civil Rights (OCR) and a 278% increase in large data breaches involving ransomware. The post HHS-OIG Audit Finds Security Gaps at Large Northeastern Hospital appeared first on The HIPAA Journal.

Hospital

Hospital HIPAA Best Practices Follow-Up

HHS Updates HIPAA Rule to Enhance ePHI Security

Health Prime

JANUARY 22, 2025

Department of Health and Human Services (HHS) released a Notice of Proposed Rulemaking (NPRM) to modify the Health Insurance Portability and Accountability Act (HIPAA) Security Rule of 1996. This is the first HIPAA Security rule update since 2013. From 2018-2023, reports of significant breaches increased by 102%.

HIPAA

HIPAA Business Associate Best Practices Insurance

Webinars

How to Start Virtual Care the Right Way: A Proven Roadmap for 2025 and Beyond

MORE WEBINARS

Medical dictation for iPhone: An introduction

Mobius MD

JANUARY 17, 2025

There are several HIPAA-compliant medical dictation apps for iPhone that feature specialized medical vocabularies and integrate with EMRs. HIPAA Compliance : Medical app developers should implement safeguards to protect PHI. Before using a medical dictation app, ask the company to confirm their software is HIPAA-compliant.

Medication

Medication HIPAA Documentation Medical Terminology

OCR Resolves Guam Hospital HIPAA Investigation with a $25,000 Settlement

The HIPAA Journal

APRIL 18, 2025

The Department of Health and Human Services Office for Civil Rights (OCR) has announced its 7th HIPAA enforcement action under its HIPAA risk analysis enforcement initiative, settling an alleged HIPAA risk analysis violation with a Guam hospital authority for $25,000.

HIPAA

HIPAA Hospital Business Associate

A Comprehensive Guide to Meaningful Use and EHR

Arkenea

JUNE 8, 2025

physicians has surged from 18 percent in 2001 to 92 percent in 2018. EHRs are HIPAA and HITRUST compliant to avoid disclosure of Patient Health Information (PHI) due to cyberattacks. in 2018, CMS (Centers for Medicare & Medicaid Services) rebranded the EHR Incentive Program, which is commonly known as the Meaningful Use.

Discharges

Discharges Vital Signs Transfers HIPAA

Illinois Business Associate Settles Alleged Risk Analysis Failure for $227,816

The HIPAA Journal

MARCH 24, 2025

Health Fitness Corporation, an Illinois business associate, has agreed to settle an alleged HIPAA risk analysis failure with the HHS Office for Civil Rights (OCR). Health Fitness Corporation (Health Fitness) is a provider of wellness plans to clients across the United States and a business associate under HIPAA. 164.308(a)(1)(ii)(A).

Business Associate

Business Associate HIPAA

Outsourced Software Product Development: A Comprehensive Guide

Arkenea

APRIL 10, 2025

This rapid turnaround was possible due to the vendors agile processes, continuous integration pipelines, and prebuilt compliance frameworks for HIPAA and GDPR. In 2018, contract workers outnumbered fulltime employees, highlighting Googles reliance on external expertise.

Tests

Tests Communication Documentation Follow-Up

What are the Penalties for HIPAA Violations?

The HIPAA Journal

DECEMBER 24, 2022

Penalties for HIPAA violations can be issued by the Department of Health and Human Services’ Office for Civil Rights (OCR) and state attorneys general. In addition to financial penalties, covered entities are required to adopt a corrective action plan to bring policies and procedures up to the standards demanded by HIPAA. .

HIPAA

HIPAA Business Associate Follow-Up Medication

The Smartphone Is the Consumer’s Personal Health Platform – Implications from Deloitte’s 2018 Survey

Health Populi

NOVEMBER 15, 2018

Furthermore, voice technologies are “making noise,” according to Deloitte in A New Era in Mobile Continues, the 2018 Global Mobile Consumer Survey : US Edition. Note in the first bar chart that in 2018, 89% of those 45-54 and 74% of people 55 and over have “ready access” to a smartphone. which 1 in 2 U.S.

Business Associate

Business Associate HIPAA Tests Communication

HIPAA Violation Cases

The HIPAA Journal

APRIL 27, 2025

HIPAA violation cases are compliance investigations that result from a data breach being notified to the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) or a privacy complaint being submitted to OCR via the complaints portal. There are many different types of HIPAA violation cases.

HIPAA

HIPAA Business Associate Hospital Medication

HIPAA Update to Include Cybersecurity Requirements for Health Care Organizations

Pulmonology Advisor - Practice Management

MAY 17, 2024

An update to the Health Insurance Portability and Accountability Act (HIPAA) Security Rule is now underway with new cybersecurity requirements. The latest data show a 93% increase in large breaches (from 369 to 712) reported from 2018 to 2022. HIPAA privacy requirements may be violated through data collection and its usage. “As

HIPAA

HIPAA Hospital Insurance Follow-Up

Healthcare Data Breach Statistics

The HIPAA Journal

MARCH 20, 2025

The HIPAA Journal has compiled healthcare data breach statistics from October 2009, when the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) started publishing summaries of healthcare data breaches on its website. PA Business Associate 2,675,934 Hacking/IT Incident 45 2018 AccuDoc Solutions, Inc.

Business Associate

Business Associate HIPAA Unit Organization and Environment Hospital

Healthcare Data Security Breach: What to Do If Your Records Have Been Hacked

Scrubs

AUGUST 22, 2023

In 2018, the healthcare sector saw 15 million patient records compromised across 503 breaches, which was three times the amount seen in 2017. They should also keep up with the latest healthcare IT news, including the HIPAA Journal , to make sure your system is up to date.

Follow-Up

Follow-Up Documentation Patient Records HIPAA

HHS Updates HIPAA Rule to Enhance ePHI Security

Health Prime

JANUARY 22, 2025

Department of Health and Human Services (HHS) released a Notice of Proposed Rulemaking (NPRM) to modify the Health Insurance Portability and Accountability Act (HIPAA) Security Rule of 1996. This is the first HIPAA Security rule update since 2013. From 2018-2023, reports of significant breaches increased by 102%.

HIPAA

HIPAA Business Associate Best Practices Insurance

HHS updates HIPAA rule to enhance ePHI security

Health Prime

JANUARY 22, 2025

Department of Health and Human Services (HHS) released a Notice of Proposed Rulemaking (NPRM) to modify the Health Insurance Portability and Accountability Act (HIPAA) Security Rule of 1996. This is the first HIPAA Security rule update since 2013. From 2018-2023, reports of significant breaches increased by 102%.

HIPAA

HIPAA Business Associate Best Practices Insurance

OCR Announces Proposed Updates to HIPAA Security Rule, Raises the Bar for Healthcare Cybersecurity

Healthcare Law Insights blog

JANUARY 15, 2025

This marks the first update to the HIPAA Security Rule since 2013. From 2018-2023, OCR observed a 102% increase in breaches affecting 500 or more individuals, with 167 million affected in 2023 alone. These changes aim to address the steadily increasing risk of cyberattacks on critical healthcare infrastructure. population. [1]

HIPAA

HIPAA Business Associate Follow-Up Documentation

The Digital Transformation of Patients – Update from Rock Health and Stanford

Health Populi

MARCH 2, 2021

In 2018, consumers’ tracking of at least one health metric crossed over from an analog method to digital tracking, illustrated in the line chart. The proportion of people tracking at least one health metric digitally was 38% in 2018 and grew to over one-half, 54%, in 2020.

Follow-Up

Follow-Up Hospital Insurance Medication

Open Table for Health: Patients Are Online For Health Search and Physician Reviews

Health Populi

FEBRUARY 19, 2019

Seeking health information online along with researching other patients’ perspectives on doctors are now as common as booking dinner reservations and reading restaurant reviews, based on Rock Health’s latest health consumer survey, Beyond Wellness for the Healthy: Digital Health Consumer Adoption 2018. Tech companies? In the U.S.,

HIPAA

HIPAA Follow-Up Collaboration Medication

HIPAA Update to Include Cybersecurity Requirements for Health Care Organizations

Pulmonology Advisor - Practice Management

MAY 17, 2024

An update to the Health Insurance Portability and Accountability Act (HIPAA) Security Rule is now underway with new cybersecurity requirements. The latest data show a 93% increase in large breaches (from 369 to 712) reported from 2018 to 2022. HIPAA privacy requirements may be violated through data collection and its usage. “As

HIPAA

HIPAA Hospital Insurance Follow-Up

Consumer Trust, Privacy and Healthcare – Considering #HIMSS18 in the Stark Light of Facebook and Cambridge Analytica

Health Populi

MARCH 27, 2018

On 1st March 2018, two over-arching issues remained with me leaving Las Vegas and #HIMSS18: the central, recognized role of cybersecurity threats in healthcare, and the growing use of consumer-facing technologies for self- and virtual care. What a difference a couple of weeks make…. billion active monthly accounts.

HIPAA

HIPAA Business Associate Best Practices Patient Records

Most Consumers Are Interested in Using a Voice Assistant for Some Type of Health Care

Health Populi

OCTOBER 29, 2019

The report calls out one big barrier to early adoption especially among hospitals and physicians: concerns about privacy and HIPAA compliance. The use cases for health care must wrestle with HIPAA and other privacy laws that may be relevant for a particular medical situation or patient population.

HIPAA

HIPAA Hospital Scheduling Medication

Extending Legacy Systems To The Cloud For Secure Communications

Electronic Health Reporter

NOVEMBER 15, 2019

In 2018, the Department of Health and Human Services Office of Civil […]. When organizations factor in the loss of productivity, the amount of civil complaints and fines levied, plus the public relations besmirching, the cost implications skyrocket.

Communication

Communication HIPAA

Texas Governor Signs Bill Providing Cybersecurity Safe Harbor for SMBs

The HIPAA Journal

JUNE 26, 2025

Businesses that are covered entities under the Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act, or PCI DSS, will be covered if they are in full compliance with those standards. The post Texas Governor Signs Bill Providing Cybersecurity Safe Harbor for SMBs appeared first on The HIPAA Journal.

Billing

Billing HIPAA Insurance

The Cost of a Healthcare Data Breach is $408 Per Stolen Record, 3X the Industry Average

Health Populi

JULY 15, 2018

The cost of a healthcare data breach is $408, nearly three-times the cross-industry average, revealed in the 2018 Cost of a Data Breach Study: Global Overview , from IBM Security and the Ponemon Institute. This 2018 report found the average cost of a data breach globally was $3.86 million, up 6.4%

Documentation

Documentation Insurance Hospital Medication

Isn’t It Eyeconic? Vision Care in the Evolving Health Care Ecosystem

Health Populi

MARCH 21, 2019

Over one-half of 213 retail chains listed in Internet Retailers top 1000 offered “buy online, pick up in store” fulfillment in 2018. Walmart, in particular, had a huge uptick in this during the 2018 holiday shopping season.

Insurance

Insurance HIPAA Patient Care Billing

Consumers’ Embrace of Digital Health Tech Stalls, and Privacy Concerns Prevail – Accenture’s 2020 Research

Health Populi

MARCH 10, 2020

Use of wearable tech nearly halved, from 33% to 18%, between 2018 and 2020. “Privacy” is mentioned over 500 times in the document; “HIPAA,” well over 300. Use of mobile apps to track personal health activity fell from nearly 1 in 2 consumers to 1 in 3.

Appointments

Appointments HIPAA Documentation Tests

FTC Imposes $1.9 Million Penalty on Evoke Wellness for Deceptive Marketing Campaign

The HIPAA Journal

JUNE 17, 2025

The FTC alleges that Evoke’s conduct violated the FTC Act and the Opioid Addiction Recovery Fraud Prevention Act of 2018. Million Penalty on Evoke Wellness for Deceptive Marketing Campaign appeared first on The HIPAA Journal. million is payable due to the defendants’ financial position. The post FTC Imposes $1.9

Admissions

Admissions HIPAA

The Retail Health Battle Royale in the U.S. – A Week-Long Brainstorm, Day 2 of 5 – Amazon and One Medical

Health Populi

JULY 26, 2022

With PillPack, I wrote here in June 2018 that Amazon got 50 U.S. billion investment makes ONEM the third largest acquisition in Amazon’s portfolio, following Whole Foods at $13.7 bn and MGM Studios for $8.5 The PillPack (pharmacy) buy was $1 billion. State pharmacy licenses with the deal.

Medication

Medication Follow-Up Insurance HIPAA

Nudging Patients to Use EHRs: Moving Toward a Tipping Point for Consumer Health IT

Health Populi

APRIL 10, 2018

40, published April 2018. On March 29, 2018, Under Armour’s announcement that about 150 million users of My Fitness Pal had their personal information breached in March is a specific consumer health wake-up call.

Scheduling

Scheduling Appointments Tests Patient Experience

How accurate are AI-generated clinical notes?

Mobius MD

SEPTEMBER 9, 2024

AI medical scribes also adhere to HIPAA standards, ensuring patient data stays safe. HIPAA compliance is critical for any AI tool used in clinical settings. Research from 2018 found that automated speech recognition software used by doctors produced an error rate of 7.4%.

Documentation

Documentation HIPAA Medication

“Seeing Is Not Believing:” Consumers Concerned About the Accuracy of Online Health Information

Health Populi

NOVEMBER 15, 2018

adults 18 and over in May-June 2018. Today, that e-script could be communicated by doctor, pharmacist, nurse, or other health care professional via a text message sent with a Medscape or JAMA article , or a recipe emailed (via HIPAA-compliant secure portal, of course) from a dietitian’s website. KRC Research polled 1,700 U.S.

HIPAA

HIPAA Communication Medication

Supreme Court Declines Petition to Take on Data Breach Case Against South Carolina FQHC

The HIPAA Journal

MARCH 6, 2025

Ford received medical services at Sandhills in 2018 but ceased being a patient of Sandhills before the November ransomware attack. The post Supreme Court Declines Petition to Take on Data Breach Case Against South Carolina FQHC appeared first on The HIPAA Journal.

HIPAA

HIPAA Billing Appointments Scheduling

Y Combinator Healthcare Startups DrChrono and Stitch Join Forces

DrChrono

JULY 16, 2018

July 16, 2018 (GLOBE NEWSWIRE) — DrChrono Inc., the company enabling the medical practice of the future, today announced a new partnership with Stitch, a company that has created a free HIPAA-compliant app for healthcare teams to send internal messages, communicate with patients and track daily tasks.

HIPAA

HIPAA Collaboration Communication Medication

My Health, My Data – Thinking Consumers, Privacy and Self-Care at HIMSS 2023

Health Populi

APRIL 17, 2023

The bill expands privacy protections for Washington State’s health citizens beyond HIPAA’s provisions. The Washington State legislature passed House Bill 1155, aka the My Health, My Data Act , last week. Governor Jay Inslee is expected to sign this into State law later this year.

HIPAA

HIPAA Billing Hospital Medication

Healthcare Information In-Security Is the New Normal

Health Populi

APRIL 30, 2018

Three-fourths of healthcare providers experienced a data breach in 2017, according to the HIMSS 2018 Cybersecurity Survey. Only 41% of healthcare workers say they receive security training, a Forrester study learned in January 2018. The link will take you to the Request, and input will be accepted until 31 May 2018.

Documentation

Documentation Hospital Medication Patient Experience

Health Is Social – The Social Determinants of Health at HIMSS19

Health Populi

FEBRUARY 11, 2019

That wand has begun to initiate its magic in the physician community, based on a wonderful essay in JAMA published 20 December 2018 titled, Social Determinants of Health in the Digital Age: Determining the Source Code for Nurture. need a new-and-improved HIPAA or more over-arching new national privacy law like a USGDPR? Does the U.S.

Appointments

Appointments Insurance HIPAA Billing

How the Latest on Facebook and the “Deep State” Could Undermine Patient Data Sharing and AI

Health Populi

MARCH 20, 2018

But trust comes before sharing, and Americans’ trust in institutions is eroding even more quickly in 2018. I observed eroding trust in healthcare earlier this year in the 2018 the Edelman Trust Barometer. Health Populi’s Hot Points: This week’s revelations about Facebook, Cambridge Analytica, and the U.S.

Medication

Medication HIPAA

Personalized Medicine: Consumer Concerns About Coverage, Affordability and Privacy

Health Populi

MAY 30, 2018

consumers’ views on personalized medicine comes from a survey conducted for PMC, the Personalized Medicine Coalition, and GenomeWeb , published in May 2018. This picture of U.S. Privacy points to patients’ fundamental right to it, balanced with data availability for research.

Insurance

Insurance Tests HIPAA Diagnostics

#Engage4Health: How Patients Are Morphing Into Healthcare Consumers, for #HIMSS18

Health Populi

FEBRUARY 12, 2018

This blog appears today as part of a #HIMSS18 primer series for attendees, and the industry at large, to discuss major health IT issues that will help move health and healthcare delivery forward in 2018 – and beyond. To that end, it is interesting to note that Amazon is seeking a privacy professional experienced with HIPAA.

HIPAA

HIPAA Patient Experience Appointments Insurance

HIMSS 2019: The Mainstreaming of Health IT, from Jim Cramer to Opioid Risk Scores

Health Populi

FEBRUARY 9, 2019

The fact is that HIPAA may not cover all of these data flows. PS — For more insights into Epic, see a New York Times article published December 23, 2018, titled, “Willy Wonka and the Medical Software Factory.”

Collaboration

Collaboration HIPAA Patient Records Hospital

Will Technology Cure Americans’ Health Care System Ills? Considering Google and Ascension Health’s Data Deal

Health Populi

NOVEMBER 12, 2019

” The last paragraph of the press release states: “All work related to Ascension’s engagement with Google is HIPAA compliant and underpinned by a robust data security and protection effort and adherence to Ascension’s strict requirements for data handling.” health care. Out-of-network costs?

Collaboration

Collaboration Hospital Best Practices HIPAA

Patients Don’t Trust Big Tech with Personal Health Information Much Preferring Healthcare Providers as Data Stewards

Health Populi

JULY 31, 2023

The biggest drops in confidence between 2018 and 2021 occurred with peoples’ trust in Facebook, Amazon, and Google above other institutions. Technology companies had garnered high trust until the past few years, with a sentinel event for downfall in the Facebook/Cambridge Analytica event in 2018.

Insurance

Insurance Medication HIPAA

Five healthcare trends to watch for in 2024

Health Prime

JANUARY 24, 2024

Read more about this in our blog 4 steps to reduce HIPAA breaches within your medical practice. In 2024, the industry will witness a heightened emphasis on robust cybersecurity measures to protect sensitive patient data from cyber threats. The HHS Office for Civil Rights (OCR ) reports a rise in cyber incidents within the healthcare sector.

Billing

Billing Communication Appointments Medication

April 2025 Healthcare Data Breach Report

HHS-OIG Audit Finds Security Gaps at Large Northeastern Hospital

Webinars

Trending Sources

HHS Updates HIPAA Rule to Enhance ePHI Security

Webinars

Medical dictation for iPhone: An introduction

OCR Resolves Guam Hospital HIPAA Investigation with a $25,000 Settlement

A Comprehensive Guide to Meaningful Use and EHR

Illinois Business Associate Settles Alleged Risk Analysis Failure for $227,816

Outsourced Software Product Development: A Comprehensive Guide

What are the Penalties for HIPAA Violations?

The Smartphone Is the Consumer’s Personal Health Platform – Implications from Deloitte’s 2018 Survey

HIPAA Violation Cases

HIPAA Update to Include Cybersecurity Requirements for Health Care Organizations

Healthcare Data Breach Statistics

Healthcare Data Security Breach: What to Do If Your Records Have Been Hacked

HHS Updates HIPAA Rule to Enhance ePHI Security

HHS updates HIPAA rule to enhance ePHI security

OCR Announces Proposed Updates to HIPAA Security Rule, Raises the Bar for Healthcare Cybersecurity

The Digital Transformation of Patients – Update from Rock Health and Stanford

Open Table for Health: Patients Are Online For Health Search and Physician Reviews

HIPAA Update to Include Cybersecurity Requirements for Health Care Organizations

Consumer Trust, Privacy and Healthcare – Considering #HIMSS18 in the Stark Light of Facebook and Cambridge Analytica

Most Consumers Are Interested in Using a Voice Assistant for Some Type of Health Care

Extending Legacy Systems To The Cloud For Secure Communications

Texas Governor Signs Bill Providing Cybersecurity Safe Harbor for SMBs

The Cost of a Healthcare Data Breach is $408 Per Stolen Record, 3X the Industry Average

Isn’t It Eyeconic? Vision Care in the Evolving Health Care Ecosystem

Consumers’ Embrace of Digital Health Tech Stalls, and Privacy Concerns Prevail – Accenture’s 2020 Research

FTC Imposes $1.9 Million Penalty on Evoke Wellness for Deceptive Marketing Campaign

The Retail Health Battle Royale in the U.S. – A Week-Long Brainstorm, Day 2 of 5 – Amazon and One Medical

Nudging Patients to Use EHRs: Moving Toward a Tipping Point for Consumer Health IT

How accurate are AI-generated clinical notes?

“Seeing Is Not Believing:” Consumers Concerned About the Accuracy of Online Health Information

Supreme Court Declines Petition to Take on Data Breach Case Against South Carolina FQHC

Y Combinator Healthcare Startups DrChrono and Stitch Join Forces

My Health, My Data – Thinking Consumers, Privacy and Self-Care at HIMSS 2023

Healthcare Information In-Security Is the New Normal

Health Is Social – The Social Determinants of Health at HIMSS19

How the Latest on Facebook and the “Deep State” Could Undermine Patient Data Sharing and AI

Personalized Medicine: Consumer Concerns About Coverage, Affordability and Privacy

#Engage4Health: How Patients Are Morphing Into Healthcare Consumers, for #HIMSS18

HIMSS 2019: The Mainstreaming of Health IT, from Jim Cramer to Opioid Risk Scores

Will Technology Cure Americans’ Health Care System Ills? Considering Google and Ascension Health’s Data Deal

Patients Don’t Trust Big Tech with Personal Health Information Much Preferring Healthcare Providers as Data Stewards

Five healthcare trends to watch for in 2024

Stay Connected