AxionStats by VerticalAxion


How to Enforce the HIPAA Privacy Rule’s Minimal Necessary Access Requirements

Sharing patient information with others in your office can violate HIPAA Privacy Rule The Minimal Necessary requirement of the HIPAA Privacy Rule is a good example of how Administrative, Physical, and Technical Safeguards must all be […]

Can you PROVE you are HIPAA compliant?

HIPAA Compliant work requires detailed tickets and checklists Your Chief Information Officer (CIO) calls you in to say that the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is […]

Don’t Join the HIPAA Data Breach ‘Wall of Shame’

HIPAA Data Breach: Protect your data storage devices and backups, and train your staff In compliance with the HIPAA Data Breach Notification Rule, more than 570 HIPAAdata breaches of over 500 records […]

HIPAA Compliance – Eating the Elephant One Bite at a Time

Building a HIPAA Compliance Program, step-by-step Like eating an elephant, building a HIPAA compliance program can be a daunting task. What do you do? What should you do first? Where […]

HIPAA Security Rule: Assigned Responsibility and Resources

“Why me??? I don’t know anything about the HIPAA Security Rule or technology!” You were just told you are your organization’s HIPAA Security Officer. As you read through the HIPAA […]

The Number One HIPAA Requirement – the HIPAA Risk Analysis

HIPAA Risk Analysis and Your Critical Starting Point The HIPAA Risk Analysis is so important that it is the first item defined in the HIPAA Security Rule, a requirement since 2005. It forms […]

HIPAA Compliant Data Access

HIPAA Compliant Data – Who Can Get to What, and Why Before you give your employees HIPAA compliant access to patient data you must do some planning. While it would be […]

New $400,000 HIPAA Penalty

Want to avoid a HIPAA penalty?  400,000 reasons to check your network security. Want to avoid a HIPAA penalty?Do you know… what a firewall is? the difference between a firewall […]

HIPAA Compliant E-mail: Myths & Facts

Understand What Constitutes HIPAA Compliant E-mail Every day I get questions about HIPAA compliant e-mail, and many days I see or hear something that leads healthcare organizations and their business […]

HIPAA Business Associate Myths & Facts

Make your vendors (HIPAA Business Associates ) accountable NOW, or pay a big price HIPAA Business Associatecompliance can spell big trouble for medical practices, because many practice managers have not […]

"Even though I serve both as the county IT director and the HIPAA Security Officer, I would not have been able to identify some of the issues you uncovered. As an outside organization you were able to gather information objectively, and offer a perspective I could not have gotten using internal resources. Your certifications in HIPAA and Security enabled you to ask the right questions, and relate your findings directly to the HIPAA rules."
Ken Peaslee, Director, Information Technology
County of Steuben, NY