Electronic health records privacy compliance

Top Stories

News 08 Oct 2020
Healthcare cybersecurity needs a dose of threat modeling

CISA senior advisor Josh Corman said healthcare CIOs should focus on threat modeling and stronger disaster recovery for better healthcare cybersecurity. Continue Reading
Feature 30 Sep 2020
Attack on Universal Health Services a cry for change

A suspected ransomware attack on Universal Health Services is an existential crisis for healthcare organizations that needs to be addressed, according to one security expert. Continue Reading

Feature 29 May 2020

Contact tracing apps seem effective, but have privacy concerns

Contact tracing mobile applications appear to offer an easier, safer way to track where an infected person has been, but technology could cross a data privacy boundary. Continue Reading
Feature 24 Apr 2020

Safety vs. privacy in the age of coronavirus raises tech questions

To slow the spread of the coronavirus, governments and organizations are using contact tracing and thermal imaging for fever detection, but these methods carry privacy concerns. Continue Reading
News 14 Feb 2020

Malware attack further proof that small health systems are vulnerable

An attack on affiliates of Boston Children's Hospital demonstrates how smaller healthcare organizations are often ill-prepared for cybersecurity incidents, according to experts. Continue Reading
Tip 14 Jan 2020

HIPAA compliance checklist: The key to staying compliant in 2020

Putting together a HIPAA compliance program can be fraught with difficulty. Review best practices and a HIPAA compliance checklist to avoid common pitfalls and pass an audit. Continue Reading
Feature 18 Nov 2019

Google-Ascension deal reveals murky side of sharing health data

The Google-Ascension partnership is a 'PR failure' that demonstrates a need for greater transparency about what happens to patient health data. Continue Reading
News 02 Oct 2019

Healthcare cybersecurity threatened by cloud misconfigurations

CynergisTek's Caleb Barlow said misconfiguration of a cloud environment is a top security threat for healthcare organizations. Continue Reading
News 30 Aug 2019

In light of MGH healthcare data breach, experts call for transparency

Experts say Massachusetts General Hospital should have included more details about the data breach it suffered in June. Doing so can be valuable to other institutions. Continue Reading
Feature 12 Jun 2019

6 steps to better third-party risk management

The American Medical Collection Agency data breach exposed the hazard of dealing with service providers. Here are six steps on how to better manage third-party vendors. Continue Reading
Feature 22 May 2019

Computer vision tools reach into test, healthcare, security

Gaining a reputation as a viable technology in niche applications like X-ray scans, fingerprint matching and robotics, computer vision looks to mainstream, commodified apps. Continue Reading
Tip 03 Aug 2018

Restrain employee error to fight healthcare cybersecurity threats

According to separate studies, healthcare employees are the biggest security threat to an organization. A security expert suggests three ways to bolster internal security. Continue Reading
Feature 30 Jul 2018

Take commonsense approach to cybersecurity for healthcare plan

In this Q&A, a cybersecurity expert suggests that providers should take a reasoned, commonsense approach to developing a cybersecurity for healthcare program. Continue Reading
Tip 14 Jun 2018

Easier medical record access is key to ideal patient journey

A chief medical information officer suggests that giving people easier access to their medical information is one way to improve the patient experience. Continue Reading
Feature 01 May 2018

Don't overlook HIPAA issues when developing AI healthcare tools

So you have an idea for using AI in healthcare software? Be sure you adhere to HIPAA rules, suggests a healthcare regulatory expert, to avoid noncompliance problems. Continue Reading
Feature 20 Mar 2018

Natural-language processing technology boosts BI at Penn Medicine

Natural-language processing technology lets Penn Medicine tap unstructured data, improving its analytics and patient care. Success required a multidisciplinary effort. Continue Reading
News 19 Mar 2018

Cybersecurity in healthcare ails from lack of IT talent

Healthcare cybersecurity woes continue unabated, with more frequent cyberattacks amid a lack of IT talent and employee awareness, but organizations are spending more on security. Continue Reading
Feature 24 Jul 2015

Wearable health technology and HIPAA: What is and isn't covered

Healthcare data many think is protected by HIPAA may not be. With wearable health technology, some experts are concerned by what's not covered. Continue Reading
Tip 18 Apr 2014

Security gets interactive with HIPAA compliance assessment app

The release of a security risk assessment tool to assist providers with HIPAA compliance was announced by the Department of Health and Human Services. Continue Reading
Tutorial 03 Jan 2011

FAQ: What is health data archiving?

Data archiving lets health care providers store patient records for years, as state and federal laws require. This FAQ addresses types of storage, outsourcing and other concerns. Continue Reading
Tutorial 09 Dec 2010

Briefing: How to avoid a health care data breach

A data breach can be quite costly to a provider's budget and reputation. This briefing offers advice for securing health care data to comply with HIPAA and HITECH Act rules. Continue Reading
Tip 26 Nov 2010

Using LDAP authentication to limit EHR data access

With role-based LDAP authentication, "naming models" define the types of patient information an end user can and can't access. This technology improves information security and reduces errors. Continue Reading
Feature 07 Oct 2010

Data breach notifications on the rise at Office for Civil Rights

The majority of data breaches in health care organizations are caused by theft and loss of data, the latest OCR report says. Continue Reading
Tip 25 Aug 2010

How the HITECH Act changes HIPAA compliance

Thanks to the HITECH Act, HIPAA compliance has become stricter, with bigger fines for data breaches and restrictions on the use of personal data. This tip outlines the major changes to HIPAA compliance. Continue Reading
Tip 01 Oct 2009

HIPAA-covered entities' first step should be a quality assurance plan

HIPAA-covered entities must leverage or install a good QA team, an effort that should be driven from the top down and be part of the strategic plan of the technology organization. Continue Reading

CIO

What are the 4 different types of blockchain technology?
Public, private, hybrid or consortium, each blockchain network has distinct pluses and minuses that largely drive its ideal uses ...
White House seeks public comment on national AI strategy
The White House wants to know about AI risks and benefits, as well as specific measures such as regulation that might help ...
Meta fine highlights EU, US data sharing challenges
Until the new EU-U.S. Data Privacy Framework is established, Meta's $1.2 billion euro fine should serve as a warning to U.S. ...

Cloud Computing

Dell Apex updates support enterprise 'cloud to ground' moves
Dell's latest Apex updates puts the company in a position to capitalize on the hybrid, multicloud, and edge computing needs of ...
Prepare for the Azure Security Engineer Associate certification
Are you ready to boost your resume or further your cloud career path? Review this preparation guide to get ready for Exam AZ-500 ...
Dell takes edge deployment from the frontier to NativeEdge
At Dell Tech World, the vendor seeks to simplify deploying and managing up to thousands of edge devices in various locations, as ...

Mobile Computing

How to fix an iPhone Personal Hotspot that's not working
Connectivity issues, misconfigured settings and human error can all cause mobile hotspot problems. IT and users must know how to ...
How to exit kiosk mode on any OS
Manually exiting kiosk mode is still necessary in the age of mobile device management for convenience and when it's time to ...
Getting started with kiosk mode for the enterprise
A kiosk can serve several purposes as a dedicated endpoint. Understanding those possibilities and their benefits and challenges ...

Security

Chinese hackers targeting U.S. critical infrastructure
Microsoft uncovered a Chinese nation-state threat group that is compromising Fortinet FortiGuard devices to gain access to ...
Smart contract benefits and best practices for security
While smart contracts promise enormous benefits in the enterprise, they also present opportunities for cybercriminals. Explore ...
9 smart contract vulnerabilities and how to mitigate them
Smart contracts execute tasks automatically when specific events occur, and often handle large data and resource flows. This ...

Storage

Infinidat goes hybrid, adds cyber detection
Infinidat introduces a cloud OS, expanding its storage capabilities to the hybrid cloud, and adds cyber detection for advanced ...
NetApp rolls out new ASA block storage, recovery guarantee
NetApp's latest update includes a new line of all-flash SAN, an expansion of its OnTap software to all storage systems and a ...
Dell finds storage Apex of Project Alpine
Storage and cloud products developed under Dell Technologies' Project Alpine emerge for Dell Apex, including storage platforms ...

Close