AxionStats by VerticalAxion


Need a cure for ‘HIPAA Surprise’ ?

The HIPAA Privacy Rule included the requirement for Business Associate management … back in 2003. The HIPAA Security Rule required a Risk Analysis… starting in 2005.  So why are health […]

7 Reasons Why Business Continuity Plans Fail: Avoid the Pitfalls

  Here are a few reasons why business continuity plans fail, and how to avoid them. 1.     Unrealistic Expectations Many plans are created expecting that power, cell phones, phone lines, […]

Strengthening Your HIPAA Business Associate Chain

(From my EMRapproved HIT Security weekly blog)   HIPAA Business Associates – You aren’t alone in protecting patient data Many HIPAA covered entities don’t know (or don’t care) about managing […]

HIPAA doesn’t require data encryption, but you should

(From my EMRapproved HIT Security weekly blog)   Save millions if laptops have data encryption Every time there is a HIPAA data breach penalty for a lost laptop or hard […]

HIPAA Data Breach Harder to Deny With New Standard

(From my EMRapproved HIT Security weekly blog) Proof of harm no longer required for a reportable HIPAA data breach The release of the HIPAA Omnibus package of regulations removes proof […]

Curing HIPAA & EHR spelling headaches for Health Care professionals

Sometimes as I am putting my thoughts down I type so fast that I make spelling errors like the one I warn everyone about—HIPPA instead of HIPAA. (I ask people […]

New HIPAA Rules affect health care providers & many businesses that support them

On Thursday, January 17, the new HIPAA Omnibus Rules were announced, requiring health care organizations to update their compliance programs, and making sweeping changes to the way that many businesses that […]

Just add sun.

Solar batteries to charge your phone… laptop…medical devices… or run a full-size fridge, freezer, or washer/dryer during a power outage At the recent Consumer Electronics Show, I saw new innovative […]

Business Associates, the HIPAA Enforcement Clock is Ticking!

On March 23, the new HIPAA Omnibus Rules take effect, starting a 180-day count-down to compliance enforcement against Business Associates, including IT companies, EMR vendors, shredding companies, collection agencies, revenue cycle […]

Trust but Verify: Don’t Get a False Sense of Security from your Business Associates

Two recent highly publicized data breaches illustrate the need for HIPAA Covered Entities to make sure their Business Associates (and other partners) are really protecting their patient data. In the […]

"Even though I serve both as the county IT director and the HIPAA Security Officer, I would not have been able to identify some of the issues you uncovered. As an outside organization you were able to gather information objectively, and offer a perspective I could not have gotten using internal resources. Your certifications in HIPAA and Security enabled you to ask the right questions, and relate your findings directly to the HIPAA rules."
Ken Peaslee, Director, Information Technology
County of Steuben, NY