Data security news & resources

The domain of artificial intelligence (AI), particularly Generative AI (GenAI), is brimming with intriguing potential for companies all over the world. Conversational AI bots, open-source large language models (LLMs), and specialized models are now ubiquitous in organizations. However, the rapid advancement and widespread adoption of these tools is creating substantial challenges when it comes to […]

A little while back in December 2020, the Office of Civil Rights (OCR) issued a Notice of Proposed Rulemaking (NPRM), notifying us of upcoming augmentations to the HIPAA Privacy Rule. Three years and a lot of back and forth later, and it looks like those changes are about to be finalized into law. While we […]

It’s no secret that the healthcare sector is a prime target for cyber-attacks. Research shows healthcare organizations in the US experienced 1,426 attacks per week in 2022 – up 60% from the year before.  But while healthcare companies spend their limited resources and time shielding patient health information (PHI) from external threats, they forget that […]

Miami-based healthcare software provider, Independent Living Systems, is in the hot seat this week, after announcing a data breach that impacted over 4.2 million individuals.  The incident, which is the largest healthcare breach of the year so far, came to light on March 14, when the company shared an announcement stating it experienced an “incident […]

Under the Health Insurance Portability and Accountability Act (HIPAA), healthcare organizations must put in place specific controls to protect the confidentiality, integrity and availability of protected health information (PHI).  However, complying with HIPAA today is much more complex than it was twenty years ago. As congress recently noted, “advances in electronic technology could erode the […]

“Is it true we need to retain our HIPAA (Health Insurance Portability and Accountability Act) audit log records for six years?”  That’s a common question healthcare organizations ask us when they learn about Polymer data loss prevention (DLP) for HIPAA compliance.  While our audit reporting capabilities enable you to capture records for well over a […]

Warren Buffet once said: “It’s good to learn from your mistakes. It’s better to learn from other people’s mistakes.”  What’s that got to do with HIPAA? Well, whenever the OCR or FTC dolls out a penalty for a HIPAA violation, they also provide a handy document explaining why they gave out the fine, and how […]

The Health Insurance Portability and Accountability Act (HIPAA) consists of several rules that HIPAA-covered entities must follow to protect the confidentiality, integrity and availability of protected patient health information (PHI).  One such rule, which we will focus on today, is the mandate to “enhance safeguards as needed to limit unnecessary or inappropriate access to and […]

It’s a well-known fact in the security community that compliance and privacy should be built into operations, software and culture from the ground up. While organizations that have been around for decades don’t have the luxury of doing this, startups are perfectly placed to bake in compliance from the outset. Curious how to do it? […]

So, you’re a healthcare organization that’s started using Slack? Chances are, you want to help your employees communicate and collaborate more effortlessly, and you’ve heard on the grapevine that Slack is the collaboration tool to use. We’ve heard the same. Slack adoption is soaring. The company generated $902 million in revenue between March 2020 and […]

The world of compliance is evolving at an astounding rate. It seems like there’s a new regulation every year. Plus, with the advent of state compliance laws, companies will soon have to deal with a myriad of shifting expectations around how they deal with consumer data.  On top of this, frameworks like ISO 27001 and […]