The buzz word in the EHR world is definitely “cloud”. Are you on the cloud? You’re not on the cloud? I can’t believe you’re not on the cloud. Quick look back in corporate computing history: IBM mainframes (original cloud) Personal Computers Server / Thin Client (cloud 2.0) Personal Computers Cloud (3.0) What’s that saying? What Read More
Most people focus their efforts on the digital world when it comes to HIPAA compliance and Meaningful Use Risk Assessments. Yes, the computerization of the medical practice is a huge drive in all of this, but the cave man style of running a practice can still poke its head out of the cave once in Read More
Somehow that doesn’t appear to be spelled correctly, but my spell checker tells me otherwise…nosy that it. First the official details: Meaningful Use Stage 1 and 2 require that you “ensure adequate privacy and security protections for personal health information”. This is to be accomplished by conducting a security risk analysis per 45 CFR 164.308(a)(1). Read More
Most computer infections, network break-ins and “hack” jobs are accomplished using a thing called Social Engineering. The Collins English Dictionary defines Social Engineering as: the manipulation of the social position and function of individuals in order to manage change in a society. I define social engineering as: tricking people to get them to do what Read More
This is a common response when I ask if a practice has encrypted their laptops. Horizon BCBS is a glaring example of why this does not matter. Horizon had some laptops that were just password protected, not encrypted. NOTE: password protection is simple to break – generally can be done in under 5 minutes, whereas Read More
Recent Comments