Aris Medical Solutions Blogs
Keeping you informed and prepared
HIPAA Audits and Penalties have been requested to increase in 2023
The Department of Health and Human Services (HHS) delivered their annual report to congress and noted there have been significant increases in HIPAA complaints and large breaches. They also noted that there have not been increases in appropriations during the...
Read More
Right of Access – Time limit on Medical Records Requests
When a patient or a patient’s representative requests a copy of medical records it is very important to act promptly. Currently you have 30 days to comply with this request, and one 30-day extension (if you advise the patient/representative that...
Read More
HIPAA 2022-2023 Proposed Changes
Happy New Year! As we look back on 2022, we noticed that the Office for Civil Rights (OCR) has really started enforcing the Patients Right of Access. To see a list of fines and resolutions agreements, check out our What...
Read More
Scammers never sleep
Scammers are always busy trying different tactics to get to your wallet. During holidays is no different. Bad actors use the holidays and people’s goodwill to fool them into giving. Be careful of offers that are too good to be...
Read More
OCR issues Bulletin with HIPAA Requirements for Online Tracking
The Office for Civil Rights (OCR) has issued a bulletin to remind covered entities and business associates of their obligations under HIPAA when using online tracking technology. These technologies include but are not limited to Google Analytics, Meta Pixel, Cookies,...
Read More
Can a Medical Practitioner be sued for a HIPAA Violation or a Data Breach?
With so many data breaches in the news many medical practitioners are asking if they can be sued over HIPAA violations or from a data breach. HIPAA rules state there is no private right of action, therefore, a patient cannot...
Read More
Can a medical provider accept cash payments when a patient has insurance?
The Omnibus rule, also known as the “Final” rule changed HIPAA in many ways. It gave HIPAA teeth and included business associates as being liable under the HIPAA rules. I thought most medical providers had been made aware of the...
Read More
Healthcare Cyber-Attacks on the Rise
It is no secret that patient data is valuable on the black market. Cyber criminals will try many different methods to gain access to this data. The Office for Civil Rights (OCR) stated in their Cybersecurity Newsletter that there has...
Read More
HIPAA and Emergencies – How to Respond
First, I hope that all of you and your loved ones are safe. Fiona and Ian have affected many places, and many have suffered so much. Prayers for all… HIPAA Applies Only to Covered Entities and Business Associates The HIPAA...
Read More
HIPAA Privacy Facts for Medical Offices
There has been some confusion about when and how to share patient information. I thought it might be a good time to review some of the facts from the HIPAA Privacy and Security Rules. Here are some highlights: The Privacy...
Read More
HIPAA changes and updates for 2022-2023
Since HIPAA’s inception there have been several updates over the years. As technology changes, so must some the of HIPAA rules. We have not seen any major changes since 2013 when the Omnibus Rule gave HIPAA teeth and enforcement became...
Read More
Data Breaches in Healthcare are Increasing
Since 2015 the number of data breaches in healthcare has steadily been rising. This includes medical offices, health plans, and business associates. These breaches range from unauthorized access, loss, theft, but mostly from hacking. Hacking was determined to be from...
Read More
Why it is so important to secure emails that contain PHI
We have advised our clients for years to only transmit protected health information (PHI) if it is encrypted. We have also recommended encryption for the data at rest. With the rise of hacking, this is never more important. There are...
Read More
What does “Recognized Security Practices” mean?
We have talked in the past about the Office for Civil Rights conducting a minimum of a 12 month look back for data security/ HIPAA compliance efforts. If an organization suffers a breach, with proper documentation fines may be waived. This...
Read More
How to protect your organization from phishing attacks
It is a known fact that hackers target the healthcare sector because the data is so valuable. The cost of healthcare data breaches increased from a total average of $7.13M in 2020 to $9.23M in 2021. The average breach cost...
Read More
The Office for Civil Rights seeks public comment on Recognized Security Practices and Sharing Civil Money Penalties and Monetary Settlements
The Office for Civil Rights (OCR) released a Request for Information (RFI) seeking comments from all stakeholders including covered entities, business associates, patients, and their families. The growing number of cybersecurity threats are a significant concern driving the need for...
Read More
How to defend against common cyber-attacks
The Office for Civil Rights sent out a cyber newsletter stating that throughout 2020-2021 hackers have targeted the health care industry and the number of breaches increased 45% from 2019 to 2020. The number of breaches due to hacking or...
Read More
Dental practices can be fined under HIPAA rules
This week the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced the resolution of four investigations related to the HIPAA privacy rule. Two cases were part of the HIPAA Right of Access, bringing the...
Read More
What are common HIPAA violations and how to avoid them?
When the providers and upper management understand the ramifications of violations, then the rest of the staff typically will follow the examples that are set in place. Because HIPAA Compliance starts at the top! Violations happen when someone makes a...
Read More
Would your practice survive an audit?
There are many different types of “audits”, so when we refer to audits, we are referring to a “HIPAA audit”. When anyone mentions HIPAA audit, most practices think it won’t happen to them. I hear so often; I have never...
Read More