The Tennessee-based acute-care hospital chain Community Health Systems, Inc. (CHS), reported on August 18 that information on approximately 4.5 million patients was stolen from the company. CHS is one of the largest hospital groups in the country, operating 206 hospitals in 28 states. The company reported in a …
DOCTOR’S COMPUTER ERROR COSTS HOSPITALS $4.8 MILLION HIPAA FINE
May 8, 2014 Leave a Comment
Yesterday New York-Presbyterian Hospital and Columbia University agreed to pay $4.8 million to settle allegations that they failed to protect the electronic health information of thousands of patients. It was the largest HIPAA settlement ever made. New York-Presbyterian and Columbia operate a shared network …
ACA Requires All Health Plans to Obtain Health Plan Identifier (“HPID”)
March 6, 2014 Leave a Comment
Under health care reform, health plans are now required to obtain a Health Plan Identifier number (“HPID”). Under the HPID final regulations (published on September 5, 2012), large health plans must obtain an HPID by November 5, 2014. Small health plans with $5 million or less in annual receipts have an …
OCR Releases Protocol for HITECH-Mandated Audits
July 2, 2012 Leave a Comment
OCR Releases Protocol for HITECH-Mandated Audits The Health Information Technology for Economic and Clinical Health Act (HITECH), enacted as part of the American Recovery and Reinvestment Act of 2009, requires HHS to periodically audit covered entities and business associates for compliance with applicable …
OCR Takes Aim at Heart Doctors
April 19, 2012 Leave a Comment
On April 17, 2012, the Office of Civil Rights (OCR) announced a $100,000 settlement with Phoenix Cardiac Surgery, P.C. over violations of the HIPAA privacy and security rules. OCR began its investigation based on a report that the physician practice was posting clinical and surgical appointment information on a …
New HIPAA Audit Program
December 12, 2011 Leave a Comment
Last month, the Office for Civil Rights (OCR) of the Department of Health and Human Services (HHS) published details about its new HIPAA Privacy and Security Audit Program at its website. This new HIPAA Audit Program is being established pursuant to the American Recovery and Reinvestment Act of 2009 (in Section …