During a Congressional briefing Wednesday in Washington, DC, AHIMA and other health IT stakeholders advocated for the modernization of HIPAA regulations by expanding the law’s record access provisions to non-covered entities and better defining HIPAA’s “designated record set.”
A recent article detailing the transmission and uses of data gathered by a patient’s CPAP machine reveals that many patients are unaware of the downstream uses of the health data medical devices gather—even when they give consent for their data to be used.
The US Food and Drug Administration has released draft guidance for internet- and network-connected medical devices in response to cybersecurity concerns, updating previous guidance published in 2014.
A recent breach of medical records caused by an accidental upload of 1,654 medical records left patients’ protected health information publicly available—indexed and searchable on Google.
For the second time in the last two months, HHS Secretary Alex Azar has waived certain HIPAA Privacy Rule sanctions and penalties—this time for areas affected by Hurricane Michael.
The biggest health data breach ever has now resulted in the biggest fine that an entity has ever paid to the Department of Health and Human Services’ Office for Civil Rights.