Articles Tagged With: HHS
-
HHS Proposes Cybersecurity Requirements for Hospitals
The Department of Health and Human Services (HHS) recently released a concept paper outlining its cybersecurity strategy for the healthcare sector, focusing specifically on strengthening resilience for hospitals threatened by cyberattacks. HHS outlined four pillars for action, including new voluntary healthcare-specific cybersecurity performance goals.
-
HHS Issues HIPAA Best Practices for Telehealth
The Department of Health and Human Services published a resource guide to assist telehealth providers in explaining the privacy and security risks to patients, but the guidance makes clear HIPAA does not require this education. However, the goal is for the resource guide to help providers who would like to discuss potential risks with the patient.
-
First HIPAA Settlement for Ransomware, Fine for Phishing
The Office for Civil Rights achieved two firsts recently: a settlement agreement related to a ransomware attack on a business associate and the first fine issued for a phishing attack. Both cases hold lessons for other covered entities.
-
Information Blocking Still Happening After Cures Act
Information blocking is a threat to patient safety, but it still occurs regularly, despite the penalties for noncompliance laid out by the 21st Century Cures Act. Recently, the HHS Office of Inspector General announced its final rule establishing penalties of up to $1 million for any entities that block the flow of necessary health data.
-
U.S. Long COVID Strategy Takes Flight
HHS opens Office of Long COVID Research and Practice, NIH begins enrollment for key clinical trials.
-
HHS Removing Barriers for Patients with Limited English Proficiency
Feds aim to improve communication to prevent misdiagnosis, delayed treatment.
-
HHS Announces Reorganization of Office for Civil Rights
The announcement arrives days after the agency reported to Congress a spike in alleged HIPAA and HITECH violations.
-
CommonSpirit Ransomware Attack Holds Lessons for Cybersecurity
A ransomware attack on a large health system forced it to shut down electronic health records and cancel appointments — and there are indications it may have threatened patient safety. Hackers might have exploited weaknesses that resulted from a series of mergers and acquisitions.
-
Watch for Emerging Threats and Risks in 2023
Over the coming year, risk managers can benefit by watching recent trends in telehealth, labor shortages, and data breaches.
-
Improve Documentation for Compliance, Med/Mal Defense
Good documentation is the foundation of any solid malpractice defense and proper continuity of care argument, so risk managers constantly urge clinicians to make meticulous notes. But there are many ways in which documentation can fall short. Frequent education and adjustment to technological changes can be key to making good documentation.