Malware monster wins again!

Takeaways: The latest OCR resolution makes specific points on what OCR considers reasonable and appropriate technical safeguards of the Security Rule.  If you aren’t up to date with all of your software, it does matter very much once malware finds you. There are...

They want what!?

Takeaways: No longer are small providers “too small” for OCR to conduct a breach investigation. In an article concerning a breach investigation a copy of the information requested in the OCR letter was included. The items were to be supplied within 20 days. When I...

800,000 Reasons You Need Workforce Training

The recent HHS settlement in the case of 71 cardboard boxes of medical records being left on a physicians driveway is your 800,000 reasons, and they are all in cold, hard cash.  Here is the key detail about what happened direct from the resolution agreement: On June...

So, I was checking my crystal ball…..

I needed to write an article and was looking for ideas and figured the crystal ball thing worked so well I should check it again.  Really, no, I didn’t use one but it sure felt like it when I read the notice published about the Baylor Medical Center’s breach. Baylor...

Are your BAs hiring Gilligan, Gomer, or Barney?

It is becoming increasingly apparent that Business Associates should be taking their responsibility more seriously than they have in the past.  Although, the past could be in previous years or, for some, just yesterday.  The recent settlement of the class-action...