ZDNet / IT Library / IT Management / Regulatory Compliance / HIPAA /
HIPAA
Latest whitepapers Sort by Popularity
Prescription for HIPAA Compliance: Is Your Organization HIPAA Healthy?
The effects of a data breach in the healthcare industry are far reaching as patients and clients lose more than personal identification information (names, addresses, social security numbers), but also sensitive and private medical information (medical conditions, medication information, treatments) that is fodder for identity theft, medical billing fraud and other criminal schemes. The results are financially dibilitating and impact an organization's credibility. Does one have the defenses in place to ward off threats of a data breach? With the ever growing use and acceptance of laptops, Smartphones, USB keys, and electronic medical records, the health industry is at an ever greater risk of exposure to data breaches.
181 days ago by UtimacoHIPAA Compliance: An Examination of Institutional and Market Forces
One would think that the enactment of the HIPAA, with its mandates on data security and privacy, would have brought a major shift in the security management practices within the US healthcare. Unfortunately, recent industry reports indicate low levels of regulatory compliance, thus raising security concerns for the US health IT infrastructure. This research develops a regulatory compliance model by drawing insights from the institutional theory literature to identify the key drivers influencing HIPAA compliance, both institutional and market forces (e.g., variability in state-level privacy laws comprehensiveness, interdependency between privacy and security rules, pressure from compliance leaders in the region, compliance officer's functional background, and the consumer concern for privacy).
270 days ago by Dartmouth CollegeICD-10: A Snapshot of Payer Readiness
Four out of ten payer organizations believe ICD-10 will require the same or less work as HIPAA and Y2K. That's as of today. As the healthcare industry moves closer to ICD-10 readiness, will that number change or stay the same? Initial survey results indicate that payers are still primarily in an education phase about ICD-10 and its implications to their organizations. Payers are also starting to recognize that making the shift to ICD-10 standards could be an opportunity to do much more than merely meet compliance requirements. Just as Y2K and HIPAA before it, ICD-10 can be the catalyst to take a global approach to IT planning.
476 days ago by TriZetto GroupWhich Hospitals Are Complying With HIPAA: An Empirical Investigation of US Hospitals
Since the passage of HIPAA regulation, US hospitals have gone on a high gear by investing organizational resources on HIPAA policy and procedures, information technologies, and information privacy & security safeguards to achieve compliance status by the enforcement dates. Yet, recent industry report, conducted post HIPAA enforcement deadlines, presents a bleak picture of HIPAA compliance, raising concerns for the privacy and security of patient data, as well transactional efficiency of hospitals. Drawing from organizational sociology and organizational behavior literature the paper examines propensity of hospitals being fully compliant with privacy, security and transaction rules of HIPAA.
476 days ago by Dartmouth CollegeProviding Secure and Convenient Bedside Access to Patient Data
Spencer Hospital is a 99-bed facility that is complemented by two family-practice clinics, two dialysis centers, the Abben Cancer Center, and a new cosmetic and reconstructive surgery clinic. To satisfy security and HIPAA requirements, the IT department set fairly short time-outs for viewing patient data screens. Though this ensured data would not be visible for an undue amount of time, it also impeded productivity. Spencer Hospital's director of IT and his team began evaluating potential vendors, they considered software-based solutions from CA and Citrix, and on the advice of their partner, CDW, they included Imprivata's OneSign appliance in the evaluation process. Over a period of 90 days, they sequentially implemented each solution on a trial basis of 30 days.
567 days ago by ImprivataWireless LAN Security for Healthcare and HIPAA Compliance
Wireless deployments in healthcare institutions have accelerated as mobility has proven to play a vital role in care delivery - especially in the acute hospital setting. This situation raises concerns relative to the upcoming healthcare privacy and security regulations. This paper will provide insights into this dilemma and offer solutions that can help ensure the security of wireless data in order to meet the demanding needs of the healthcare environment.
749 days ago by AirDefenseOffshore Product Re-Engineering for a Healthcare ISV
A mid sized health care software vendor needed to take its product offering to the next level by re-engineering from Unix based systems to .NET technology, adding a number of features to enable the product to compete effectively within a higher value market segment and ensuring HIPAA compliance. Based on cost and value calculations, the customer reversed an earlier decision to perform product maintenance in-house in the US, and decided to move into an offshore based model. The demonstrated strength and depth of talent in the maintenance team has also caused the customer to work with Calsoft Labs to take ownership of the offshore center - as they now consider it a strategic asset.
811 days ago by Calsoft LabsHave You Met the HIPAA Compliance Guidelines Yet?
Find out what you need to know about HIPAA compliance and remote access.
Every business that is part of the United States healthcare industry needs to comply with federal guidelines regulating patient information. Citrix® GoToMyPC® Corporate is a remote-access solution that can help your company or office meet these guidelines.
This 6-page comprehensive guide covers the following and more:
- Access Controls
- Transmission Security
- Audit Controls
Hospitals, medical research centers, medical systems providers, and private-practice physicians are among the healthcare providers currently using GoToMyPC Corporate. Download this informative guide to learn how Citrix® GoToMyPC® Corporate can help you to provide your organization with secure, HIPAA-compliant remote access.
"The security of GoToMyPC Corporate is heads-and-shoulders above any other products we investigated."
ÂRoss McKenzie, Director of Information Systems, Johns Hopkins Bloomberg School of Public Health 1861 days ago by Citrix Online
Risk Assessment Without Pain
Some healthcare professionals dread the task of planning and conducting the HIPAA-required security risk assessment and gap analysis, but with good support and the right tools, the job is very manageable and will pay big dividends for the whole organization. Read the paper as risk assessment gives a clear picture of your loss potential. It establishes expected losses from defined threats based on asset exposures, vulnerabilities, and estimated probabilities of occurrence.
2637 days ago by SecuracBusiness Continuity Planning in the Healthcare Environment
Article discusses practical guidelines. It is estimated that HIPAA compliance could cost the healthcare industry in the United States more than the amount expended on Y2K preparedness. In addition, there are new regulations concerning the earthquake retrofits of hospitals that could price many standalone community hospitals out of the market. Large health care systems become ever more dependent on information technology to keep the business running. Thus, the business continuity planning process is increasingly complex, but nevertheless must keep the focus on the planning process as business function driven. Recovery solutions must be developed at the same time as healthcare providers strengthen their emergency preparedness efforts. Article informs that HIPAA will finally mandate business continuity planning in the healthcare industry, which along with stepped up emergency response capabilities, will prepare US healthcare organizations for the disasters to come.
2637 days ago by DISASTER-RESOURCE.com
