Data security news & resources

Warren Buffet once said: “It’s good to learn from your mistakes. It’s better to learn from other people’s mistakes.”  What’s that got to do with HIPAA? Well, whenever the OCR or FTC dolls out a penalty for a HIPAA violation, they also provide a handy document explaining why they gave out the fine, and how […]

The Health Insurance Portability and Accountability Act (HIPAA) consists of several rules that HIPAA-covered entities must follow to protect the confidentiality, integrity and availability of protected patient health information (PHI).  One such rule, which we will focus on today, is the mandate to “enhance safeguards as needed to limit unnecessary or inappropriate access to and […]

It’s a well-known fact in the security community that compliance and privacy should be built into operations, software and culture from the ground up. While organizations that have been around for decades don’t have the luxury of doing this, startups are perfectly placed to bake in compliance from the outset. Curious how to do it? […]

So, you’re a healthcare organization that’s started using Slack? Chances are, you want to help your employees communicate and collaborate more effortlessly, and you’ve heard on the grapevine that Slack is the collaboration tool to use. We’ve heard the same. Slack adoption is soaring. The company generated $902 million in revenue between March 2020 and […]

The world of compliance is evolving at an astounding rate. It seems like there’s a new regulation every year. Plus, with the advent of state compliance laws, companies will soon have to deal with a myriad of shifting expectations around how they deal with consumer data.  On top of this, frameworks like ISO 27001 and […]

It’s been a long time since there’s been any update to the Health Insurance Portability and Accountability Act (HIPAA). But, this year, things are going to change with new additions to the HIPAA privacy rule expected to be announced in the coming months. Read on to discover how HIPAA will evolve this year and what […]

The healthcare sector has a problem. It’s trying to innovate, embrace new ways of working and adopt the cloud. To an extent, it’s doing this successfully but, then, when we look at data breach figures we see that, for many companies, this innovation is coming at a cost. For the last ten years, the healthcare […]

SaaS tools must be used in accordance with HIPAA to be compliant.

A good compliance team can make the difference between a company that is successful vs not. Risks related to reputation, enterprise, technology, people, third party are just some of the areas that a compliance team gets involved in. Finding the right candidate is challenging but keeping these traits in mind can help look for good […]

Becoming data-driven is a critical priority for organizations of all shapes and sizes. Data, combined with analytics, equals insights – and these insights can form the basis of predictions, better customer relationships and informed decisions. However, in the modern world, generating data insights comes with great responsibility. A lot of data, after all, relates to […]

HIPAA data governance extends beyond doctors and healthcare providers to most entities providing services in the healthcare area. Understanding the role and responsibilities of the service providers is essential. The American Medical Association (AMA) now requires non-HIPAA-covered entities to protect sensitive Patient Health Information (PHI) they collect. In this third blog of our HIPAA blog […]