


HIPAA Access Control: Safeguarding ePHI and Protecting Your Business
In today’s digital world, protecting sensitive data is paramount. This is especially true for organizations that handle electronic Protected Health Information (ePHI), whether you’re a healthcare provider, a business associate, or even an agent or broker...
Building a Culture of Compliance
Culture takes shape in every type of organization, whether it’s a business or a sports team. This happens as certain behaviors become the norm, whether by design or by accident. Prosperous companies make deliberate choices about the qualities they want their...
Understanding the Common Agency Provision in HIPAA – aka “Basis for a Civil Money Penalty,” or 45 CFR § 160.402
Who does this apply to? In the extensive world of rules and regulations related to HIPAA, it’s crucial to have a clear grasp of specific rules for both legal and ethical reasons. Section 45 CFR § 160.402 is often referred to as the “Common Agency...
How to Handle Subcontractors Under HIPAA
There are many scenarios in business and healthcare in which PHI is moved and shared. In the 1990s a lot of this happened over fax machines, over the phone and in person. In the modern landscape software and the internet are used to manage all data including protected...