HIPAA Final Rule Strengthens Privacy and Security Protections

On January 17, 2013, the long awaited final rule was announced. It will be published in the Federal Register on January 25, 2013. Providers need to be aware that the final rule, which replaces the current interim rule, is effective on March 26, 2013. The compliance deadline for covered entities is September 23, 2013.

HIPAA Violations---The Process Is the Answer

For some time, the ChiroCode Institute, InstaCode Institute and their consultants have warned subscribers that when it comes to HIPAA compliance, it’s not just the names and addresses that matter—it’s the compliance.

Are You Compliant with the New HIPAA Regulations?

September 23rd, 2013 was the deadline for HIPAA Omnibus Final Rule compliance. It seems to have just snuck up on everybody. We have spoken with some clincis who say that they don't need to worry about it because ”they are just a small practice.” Please, do not wait any longer to get compliant!

Are Text Messages HIPAA Compliant?

As more and more people are using mobile and wireless devices, a new buzzword has emerged: mHealth.

Windows XP No Longer HIPAA Compliant (Resource 312)

For anyone who is not a computer techie, the announcement by Microsoft about discontinuing support for Windows XP may not mean much.


How secure is your computer? Do you have a password on your computer? Do you have the automatic log offs turned on? Is your computer encrypted? Are your off-site storage files encrypted?

This document is designed to give some basic information about making your office a little more secure. It is not a substitute for a thorough HIPAA assessment.

However, there are some steps you can take right now to help cut your risk of identity theft, or security breaches. Take steps TODAY!

Q: Who is a Business Associate and what do we do if they refuse to sign the BAA (Business Associate Agreement)?

A: See the link below, as that will define for you exactly who your business associates would be. When uncertain or in doubt, it is always good to double check the HHS guideline to be confident. The information is defined in the following link:http://www.hhs.gov/ocr/privacy/hipaa/faq/business_associates/#businessassociate

CMS has a released a fact sheet on HIPAA Privacy and Security basics for providers. Designed to provide education on covered entities and Business Associates under the HIPAA Privacy Rule.

Examples of a Covered Entity would be:

Straight from the Office of Civil Rights:

Q: Does the HIPAA Privacy Rule permit health care providers to use e-mail to discuss health issues and treatment with their patients?

The associates in the provider’s world and healthcare society are filled with loads of potential business associates and endless Individual identifiable health information.

There have been so many questions about business associates, I thought I would go to the source and put together some information from HHS.gov, otherwise known as U.S. Department of Health & Human Services. Hopefully this will clear up a few common questions and give you some other resources to do your own research if you would like.   


Subscribe to RSS - HIPAA