The Fire Upstairs

Posted by on Aug 12, 2011 in HIPAA Headlines | 0 comments

Imagine this: you pull up to your office in the morning to see fire trucks putting out a fire in the office above yours. As you arrive, the flames are gone, but there is still smoke and steam coming from the building. You look around and notice that the fire never made it to your office. Whew!  Dodged that bullet. Or did you. All of that water the fire department sprayed on the upstairs office has to go somewhere, and most of it came right down into your office. The fire didn’t take you out.  A flood didn’t take you...

read more

5 Things After a Breach

Posted by on May 13, 2011 in HIPAA Headlines | 0 comments

Many times it is the after-incident response by an individual or company that dictates how the public reacts to the issue. A few notable incidents include: Toyota and the “run away” accelerator issue The Sony Playstation data breach LastPass possible breach The first two above where handled in what most might call the “typical big company way” Ignore/cover up the issue while looking into it. Hope nobody figures it out. Realize, too late, that everyone knows, and now you have another issue to respond...

read more

HITECH, HIPAA and Your Practice

Posted by on Mar 15, 2010 in HIPAA Headlines | 0 comments

An excellent article by Dom Nicastro discussed the 5 major stumbling blocks that an auditor in Oregon has noticed lately. I expand on two of the stumbling blocks, they listed below. Lack of a risk analysis – Many organization have possibly executed on risk analysis, most have never even done one. This should include, but is not limited to reviewing data backup, does everybody have their own login to the computer network, are passwords required to be changed at regular intervals… Undocumented policies and procedures...

read more