Paul R. Hales received his Juris Doctor degree from Columbia University Law School and is licensed to practice law before the Supreme Court of the United States. He is an expert on HIPAA Privacy, Security, Breach notification and Enforcement Rules with a national HIPAA consulting practice based in St. Louis. Paul is the author of all content in The HIPAA E-Tool, an Internet-based, Software as a Service product for health care providers and business associates.
This lesson is designed to enable your Organization to perform a complete Risk Analysis of all PHI it creates, receives, maintains or transmits in any format. You will understand and identify threats, vulnerabilites and risks to your organization's PHI wherever it is located.
The global Internet of Things and the HIPAA Privacy and Security Rules allow Protected Health Information (PHI) created by Covered Entities in the United States to be transmitted and stored outside the United States - and outside the reach of U.S. government regulators. Risks for Covered Entities, patients and Business Associates may lurk anywhere in a world where identity theft is rampant and medical identity is the Golden Egg for identity thieves. The U. S. Department of Health and Human Services Inspector General in a widely cited review of State Medicaid outsourcing to foreign vendors highlighted the vulnerabilities in 2014. For example, Medicaid agencies or domestic contractors who send PHI offshore may have limited means of enforcing Business Associate Agreements (BAAs) intended to safeguard PHI. Yet little has been done to publicize, let alone address the problems.
This course explains treacherous Ransomware threats attacking the Healthcare Industry and how to prevent, prepare for, respond to and recover from a Ransomware attack. It covers HIPAA Rules that apply to Ransomware, compliance with the HIPAA Rules and how to conduct a HIPAA Breach Risk Assessment to prove a Ransomware attack did not result in a Breach of Unsecured Protected Health Information (PHI) - a violation of the HIPAA Privacy Rule.
HIPAA Privacy, Security, Breach Notification and Enforcement Rules mandate compliance by Health Care Providers of all sizes - from one physician, dentist, optometrist, or licensed clinical social worker to the largest medical center.
This lesson is designed to enable your Organization to perform a complete Risk Analysis of all PHI it creates, receives, maintains or transmits in any format. You will understand and identify threats, vulnerabilities and risks to your organization's PHI wherever it is located.
This webinar focuses on HIPAA Rules for transmitting informational email and text messages to patients over an electronic communications network.
The webinar will concentrate on topics that HHS has announced will be the focus of the first round of "desk audits". They reflect significant areas of non-compliance revealed in the 2012 pilot audits and HHS HIPAA violation investigations concluded by Resolution Agreements and Corrective Action Plans.