Calculated HIPAA: News and Advice about HIPAA Compliance

FDA Plans on Expanding the Examination of Medical Device Cybersecurity

September 20, 2018 Comments Off on FDA Plans on Expanding the Examination of Medical Device Cybersecurity

The Department of Health and Human Services’ Office of Inspector General (OIG) has published a report that is saying the Food and Drug Administration (FDA) must study medical equipment cybersecurity controls more carefully and more [...]
CMS Investigates Fairview Southdale Hospital for Videotaping Patients Without Knowledge or Consent

September 19, 2018 Comments Off on CMS Investigates Fairview Southdale Hospital for Videotaping Patients Without Knowledge or Consent

The HHS’ Centers for Medicare and Medicaid Services (CMS) investigated Fairview Southdale Hospital, which is located in Edina, MN, because of a supposed patient privacy violation. It was found out that during the psychiatric evaluations [...]
Ransomware Attack on Fetal Diagnostic Institute of the Pacific Impacts 40,800 Patients

September 17, 2018 Comments Off on Ransomware Attack on Fetal Diagnostic Institute of the Pacific Impacts 40,800 Patients

The Fetal Diagnostic Institute of the Pacific (FDIP) based in Honolulu, Hawaii was attacked by ransomware on June 30, 2018. This resulted to the installation of a file-encrypting software on a server, which encrypted different [...]
OCR Issues Guidance on Health Data Sharing With the Declaration of a Public Health Emergency

September 13, 2018 Comments Off on OCR Issues Guidance on Health Data Sharing With the Declaration of a Public Health Emergency

On September 12, 2018, President Trump approved the declaration of a federal emergency in the state of Virginia. FEMA resources were also made available to the state. Secretary Alex Azar of the U.S. Department of [...]
New Privacy Framework to Help Businesses Protect the Customer and Employee Privacy

September 12, 2018 Comments Off on New Privacy Framework to Help Businesses Protect the Customer and Employee Privacy

The National Institute of Standards and Technology (NIST) published a Cybersecurity Framework in 2014 to help private companies in assessing their security policies and improving their ability to stop, identify, and respond to cyberattacks. Figures [...]
Apple App Store Privacy Policy Changes After Enforcing the GDPR

September 11, 2018 Comments Off on Apple App Store Privacy Policy Changes After Enforcing the GDPR

From October 3, 2018, Apple App Store is going to enforce a new privacy policy regulation that app developers are required to tell users what they do with the collected personal data; how they protect [...]
New Mexico Hospital Medical Records Exposed in the Street

September 10, 2018 Comments Off on New Mexico Hospital Medical Records Exposed in the Street

The New Mexico Department of Health is checking why the personal health documents of a number of of its patients fell off a truck while being transported from the facility to the safe storage location. [...]
Guidelines on The Use of Social Media to Avert HIPAA Violations

September 9, 2018 Comments Off on Guidelines on The Use of Social Media to Avert HIPAA Violations

ProPublica published a research in 2015 that revealed the involvement of healthcare employees in HIPAA social media violations in 2015. If not resolved, there will probably be a lot more incidents of HIPAA violation happening [...]
66% of UK Companies Do Not Have Cyber Risk Insurance Policies

September 6, 2018 Comments Off on 66% of UK Companies Do Not Have Cyber Risk Insurance Policies

NTT Security’s new report showed that 66% of UK’s senior officers confirmed that their organizations are not ready to cover adequately the fiscal effect of data loss in the event of a data breach. This [...]
Arc of Erie County Pays NY Attorney Generals’ Office $200,000 for Security Breach

September 5, 2018 Comments Off on Arc of Erie County Pays NY Attorney Generals’ Office $200,000 for Security Breach

The New York Attorney General fined the Arc of Erie County with $200,000 for Violating HIPAA Rules as a result of failing to safeguard its customers’ electronic protected health information (ePHI). The Arc of Erie [...]