HIPAA Violations Every Day and Every Size
We frequently get questions about whether or not an event is a HIPAA violation. Some of the events are hazy, others are clear-cut. We received an email from a nurse last week with a question. She received a postcard inviting her to a weight-loss clinic and get a $25...
Navigating HIPAA and State-Specific Medical Records Retention Requirements
The Health Insurance Portability and Accountability Act (HIPAA) mandates that Covered Entities and Business Associates retain certain documentation for a minimum of six years. However, state laws may have their own retention requirements. Key Takeaways:...
Auditing Business Associates
Have you Audited your HIPAA Business Associates? This question comes up frequently when we are working on HIPAA Policies and Procedures for our clients. The answer is rarely “yes”. We find that most folks don’t even know where to begin with this process, or they’ve...
Implementing HIPAA is More Than Meeting Government Regulations
Recently, I was on a vacation in Germany, and as I visited several medieval cities, I had two thoughts. First, Germany certainly has a lot of walled cities, and second, city walls are a great analogy for HIPAA Compliance. (Don’t worry, I didn’t spend the whole...