No Annual Risk Assessment Costs Hospital $904,000

Have you ever noticed that part in the Meaningful Use standards that requires an annual risk assessment of EMR security? Privacy professionals have stressed the risk assessment as critical to both meaningful use and HIPAA/HITECH compliance, but healthcare organizations tend to procrastinate on taking the time, effort, or money to do and up-date the assessments. … Read more

New CMS rule extends “Meaningful Use” deadlines

The Department of Health and Human Services (HHS) published a final rule August 28 that allows health care providers more flexibility in how they use certified electronic health record (EHR) technology (CEHRT) to meet meaningful use reporting requirements. CMS modified the standards as reports surfaced that many providers were planning on dropping out of the … Read more

HIPAA Violation In Rhode Island Hospital Results In $150K Fine By Massachusetts

Hospitals might be surprised to learn that HIPAA violations can not only result in federal fines, but also in fines from more than one state if the breach involves out-of-state residents. Under the HITECH Act, state Attorneys General also have enforcement and fine capabilities, but as states get more into privacy legislation, some states are … Read more