Bumpy in the Cloud?

in HIPAA Headlines by John Brewer Leave a comment

The buzz word in the EHR world is definitely “cloud”. Are you on the cloud?  You’re not on the cloud? I can’t believe you’re not on the cloud. Quick look back in corporate computing history: IBM mainframes (original cloud) Personal Computers Server / Thin Client (cloud 2.0) Personal Computers Cloud (3.0) What’s that saying?  What Read More

Paper Records Nobody Will Notice

in HIPAA Headlines by John Brewer Leave a comment

Most people focus their efforts on the digital world when it comes to HIPAA compliance and Meaningful Use Risk Assessments. Yes, the computerization of the medical practice is a huge drive in all of this, but the cave man style of running a practice can still poke its head out of the cave once in Read More

The Nosy Nurse

in HIPAA Headlines by John Brewer Leave a comment

Somehow that doesn’t appear to be spelled correctly, but my spell checker tells me otherwise…nosy that it. First the official details: Meaningful Use Stage 1 and 2 require that you “ensure adequate privacy and security protections for personal health information”. This is to be accomplished by conducting a security risk analysis per 45 CFR 164.308(a)(1). Read More

Social Engineering

in HIPAA Headlines by John Brewer Leave a comment

Most computer infections, network break-ins and “hack” jobs are accomplished using a thing called Social Engineering. The Collins English Dictionary defines Social Engineering as: the manipulation of the social position and function of individuals in order to manage change in a society. I define social engineering as: tricking people to get them to do what Read More

But Our Laptops Never Leave the Office

in HIPAA Headlines by John Brewer Leave a comment

This is a common response when I ask if a practice has encrypted their laptops. Horizon BCBS is a glaring example of why this does not matter. Horizon had some laptops that were just password protected, not encrypted. NOTE: password protection is simple to break – generally can be done in under 5 minutes, whereas Read More