The HIPAA Journal

DECEMBER 24, 2022

In addition to financial penalties, covered entities are required to adopt a corrective action plan to bring policies and procedures up to the standards demanded by HIPAA. . It is the responsibility of each covered entity to ensure that HIPAA Rules are understood and followed. What Constitutes a HIPAA Violation?

HIPAA 124

HIPAA Business Associate Follow-Up Medication 124

The HIPAA Journal

MAY 2, 2024

Data Breach Insights Healthcare accounted for 28% of data breach incidents, followed by finance and insurance (17%), business and professional services (15%), and education (13%). The biggest known root cause of all incidents was the exploitation of unpatched vulnerabilities (23% of incidents) followed by phishing (20%).

HIPAA 117

HIPAA Follow-Up Certification Business Associate 117

The HIPAA Journal

JULY 15, 2025

All HIPAA covered entities and business associates are required to have procedures in place for identifying and responding to suspected or known security incidents , mitigating any harmful effects of the incidents, and documenting the incidents and their outcomes ( §164.308(a)(6) ).

HIPAA 52

HIPAA Business Associate Documentation Follow-Up 52

Health Prime

MAY 23, 2024

It’s 100% non-negotiable for a practice to stay in business and be successful. When speaking with prospective medical coding partners, make sure to find out how they follow compliance rules. They should give you a list of compliance procedures they take as a company and how they ensure each employee is following rules and regulations.

Medical Coding 105

Medical Coding Medication Billing Communication 105

Healthcare Law Insights blog

JANUARY 15, 2025

One 2024 cyberattack on a healthcare payment cycle management company caused severe disruption throughout the healthcare industry and is estimated to have resulted in the compromise of the ePHI of up to one third of the U.S. Business Associates would also be required to obtain this verification from their subcontractors.

HIPAA 52

HIPAA Business Associate Follow-Up Documentation 52

The HIPAA Journal

APRIL 27, 2025

OCR stepped up enforcement of compliance with the HIPAA Rules in 2016, more than doubling the number of financial penalties imposed. The following three years saw similar numbers of financial penalties; however, there was another major increase in HIPAA fines in 2020 when 19 HIPAA violation cases were settled with OCR.

HIPAA 85

HIPAA Business Associate Hospital Medication 85

Arkenea

MARCH 29, 2025

Covered Entities (CE): These are involved in transmitting, storing, and creating ePHI, so they must follow HIPAA compliance rules. Business Associates (BA): These handle ePHI obtained from the covered entities, but don’t create medical data. Moving on, in times of emergencies it may not be possible to save all data.

HIPAA 52

HIPAA Business Associate Documentation Follow-Up 52

The HIPAA Journal

MAY 2, 2024

The purpose of HIPAA compliance software is to provide a framework to guide a HIPAA-covered entity or business associate through the process of becoming HIPAA-compliant and ensuring continued compliance with HIPAA and HITECH Act Rules. The top HIPAA compliance solutions also help with the management of business associates.

Tests 52

Tests HIPAA Business Associate Certification 52

Arkenea

MARCH 31, 2025

Privacy Incorporation Expenses influence HIPAA compliance costs Anticipated costs differ amongst organizations, based on the size, computer system used, covered entities (CE) involved, business associates involved, and more. Type of organization: Risk levels and quantity of PHI safeguarded depends on the type of organization.

HIPAA 52

HIPAA Business Associate Appointments Insurance 52

Minority Nurse

JULY 10, 2024

Meanwhile, around 2011, conversations about podcasting were heating up on Twitter, and it wasn’t long before two colleagues and I launched RNFM Radio, arguably one of the first nursing podcasts in existence. This was soon followed by The Nurse Keith Show , my current nursing career podcast, which has reached almost 500 episodes.

Business Associate 59

Business Associate Follow-Up Communication Medication 59

Arkenea

APRIL 8, 2025

Key Takeaways Healthcare developers must follow the three key HIPAA rules during API development: HIPAA security rule, privacy rule, and the breach notification rule. This article discusses key HIPAA rules and steps that developers can follow while building a HIPAA API. Key Rules for Developing a HIPAA API 1.

HIPAA 52

HIPAA Tests Documentation Follow-Up 52

CollaborateMD

JANUARY 3, 2024

Those rules apply to healthcare organizations and their business partners where PHI is present. Those regulations must be followed during the medical claim submission process, from insurance eligibility verification to claim submission to payment processing. Yet, many practices still face challenges in following them.

HIPAA 52

HIPAA Billing Medication Best Practices 52

Arkenea

AUGUST 15, 2024

This seamless flow of information allows providers to speed up treatment. Here’s what falls under HIPAA: HIPAA Privacy Rule: The HIPAA Privacy Rule establishes guidelines for safeguarding any personally identifiable health information that Covered Entities (CE) or Business Associates (BA) handle.

HIPAA 40

HIPAA EHR / EMR Appointments Billing 40

The HIPAA Journal

MARCH 29, 2024

Department of State has confirmed that there is a reward of up to $10 million for information leading to the identification or location of any individual linked to the ALPHV/Blackcat ransomware group, their affiliates, or links to a foreign government under the Rewards for Justice (RFJ) program.

HIPAA 97

HIPAA Unit Organization and Environment Follow-Up Business Associate 97

The HIPAA Journal

MARCH 20, 2025

AZ Business Associate 67,567 Hacking incident Charleston Area Medical Center WV Healthcare Provider 67,413 Email accounts compromised in phishing incident Heartland Medical Clinic, Inc. AZ Business Associate 10,673 Hacking incident In February, 6 healthcare data breaches were reported to OCR that affected 500 or 501 individuals.

Business Associate 115

Business Associate HIPAA Insurance Follow-Up 115

The HIPAA Journal

DECEMBER 14, 2022

The SUD records can then be shared by a covered entity or business associate for all TPO reasons, as is the case with HIPAA. After considering the comments and feedback, the HHS then releases a Notice of Proposed Rulemaking (NPRM) which is followed by a comment period. 2018 ended up being a record year for HIPAA enforcement.

HIPAA 126

HIPAA Business Associate Appointments Transfers 126

The HIPAA Journal

JANUARY 9, 2023

Those HIPAA updates were followed by the incorporation of the Health Information Technology for Economic and Clinical Health (HITECH) Act, which saw the introduction of the Breach Notification Rule in 2009 and the Omnibus Final Rule in 2013. HIPAA Changes in 2023. Changing the maximum time to provide access to PHI from 30 days to 15 days.

HIPAA 111

HIPAA Business Associate Appointments Scheduling 111

Valant

APRIL 21, 2025

Regular reviews of access permissions, particularly after staffing changes, help ensure security policies remain up to date. HIPAA-compliant video conferencing platforms help protect session privacy, but providers also need to follow best practices for maintaining confidentiality in remote settings.

HIPAA 71

HIPAA Patient Records Best Practices Documentation 71