Touchstone Compliance

Roman Diaz

Having Business Associate Agreements Can Save a Healthcare Office Boku Bucks

“The times they are a changin’,” Bob Dylan sang in the Sixties. And they still are, especially when it comes to HIPAA and its regulaltions regarding Business Associate Agreements. The Omnibus Rule that went into effect in September of 2013 makes it clear that business associates of healthcare practices now have to comply with many …

Having Business Associate Agreements Can Save a Healthcare Office Boku Bucks Read More »

Can You Keep a Secret? 9 Tips for Creating Strong Passwords.

The computers in your office are veritable treasure chests of information cyber pirates would love to get their hands on. Only authorized personnel in a practice should have the keys to unlock what’s inside.  Passwords as those keys. They play an important role in protecting Electronic Health Records (EHR) and the vital information those records …

Can You Keep a Secret? 9 Tips for Creating Strong Passwords. Read More »

Best Popcorn for Watching a Short HIPAA Video about Security of EHR

This short blog is going to point you in the direction of a good HHS video about the security of EHR  and a good popcorn to go with it. I’ve always loved popcorn. Who doesn’t? I remember my mom sprinkling the kernels into the hot oil in a heavy-duty kettle on our kitchen stove, slapping …

Best Popcorn for Watching a Short HIPAA Video about Security of EHR Read More »

Why Serious HIPAA Enforcement Is Inevitable

To borrow a phrase from Stephen Colbert, the Office of Civil Rights (OCR) — the department in charge of HIPAA enforcement — got a “wag of the finger” a while back from the Health and Human Services Office of the Inspector General. And that’s bound to have an impact on healthcare offices everywhere. A November …

Why Serious HIPAA Enforcement Is Inevitable Read More »

The Role of a Practice’s HIPAA Privacy Officer

  Exactly when an HHS auditor will visit your office is anybody’s guess. But I do know the first words an auditor is likely to say when he/she arrives to assess how the practice is doing with HIPAA compliance: “I’m from Health and Human Services and I’d like to speak with your Privacy Officer.”Roblox Robux …

The Role of a Practice’s HIPAA Privacy Officer Read More »