HIPAA Compliance Blog

According to HIPAA mandates, a third party that engages with PHI or ePHI through the services it is contracted to provide to the covering entity (for example, a clinic, medical support, social services, or health organization) is considered a business associate.

In the throes of the back to school rush, it is easy for parents and guardians to forget about the impacts and function of HIPAA privacy and security safeguards and their attendant risks, which take place when those same safeguards are ignored or under/over-utilized.

Accessing ePHI on smart devices, no matter how dire the circumstances, must be considered a potential risk, and should only be undertaken after safeguards in line with the HIPAA security rule are put into place, so as to minimize running the risk of patient privacy violations, or worse, an actual security breach.

Colington Consulting, a leading provider of HIPAA compliance services and training for all types of healthcare organizations, announces a new partnership with Physician Focused.

Almost every day there is another news article announcing breaches large and small. Why is that? Why is compliance so hard to achieve?