HIPAA for the Clinician, Part 3 Business Associate Agreements – What They Must Contain and Why Most Don’t Will evertsen Introduction Your billing company has handled your claims processing for six years. You trust them. They know your payers, your codes, your quirks. When you
Tag: HIPAA compliance
What the Change Healthcare Attack Should Have Taught Every Covered Entity
What the Change Healthcare Attack Should Have Taught Every Covered Entity will evertsen Introduction On February 21, 2024, Change Healthcare went offline. The ransomware attack that took it down was not subtle. Within hours, claims processing across thousands of practices, hospitals, and pharmacies ground to
HIPAA for the Clinician, Part 2: The Security Risk Analysis You’re Probably Not Doing Correctly
HIPAA for the Clinician, Part 2 The Security Risk Analysis You’re Probably Not Doing Correctly Will Evertsen Introduction The questionnaire arrives in your inbox from your EHR vendor. It’s labeled something like “Annual HIPAA Security Assessment” or “Compliance Review Checklist.” You spend twenty minutes clicking
Your Completed Risk Assessment Just Became a Liability
Small Practice, Big Target: Why Solo and Group Practices Are Healthcare’s Most Vulnerable Entities
HIPAA for the Clinician, Part 1: What You’re Actually Responsible For
Your EHR Is Not Your Compliance Program
Your EHR Is Not Your Compliance Program The call to the EHR vendor’s support line goes something like this: A practice administrator has just received an OCR data request letter and is trying to figure out what documentation they need to produce. Somewhere in the conversation, they ask the support rep
