Privacy officer – Touchstone Compliance

The Newest Standard for Notifying Patients of a PHI Breach

Before the HIPAA Omnibus Rule went into effect last year, the standard for determining whether or not patients needed to be notified in the event of a breach of Protected Health Information (PHI) was pretty subjective. If, for instance, a computer with PHI of 3000+ patients was stolen from a small practice, it was the …

The Newest Standard for Notifying Patients of a PHI Breach Read More »

HIPAA Risk Assessment: Lessons from General Motors

Leave a Comment / HIPAA Security Rule, risk assessment / By Roman Diaz

For healthcare providers who’ve been putting off doing a risk assessment and developing a mitigation plan, Mary Barra, the CEO of General Motors, could make a compelling case against that kind of procrastination. If ten years earlier GM had identified the ignition switch in last year’s headlines as a potentially deadly defect and taken steps …

HIPAA Risk Assessment: Lessons from General Motors Read More »

A Practice’s Privacy Officer and Security Officer: The Batman & Robin of HIPAA Compliance

Leave a Comment / HIPAA Privacy Rule, HIPAA Security Rule / By Roman Diaz

As part of HIPAA compliance, every healthcare office must have a Privacy Officer and a Security Officer. This article describes the responsibilities of each.