Verisma
Compliance & Regulatory
Resources
Compliance & Regulatory Roundtable
Join us November 13, 2024 for a special interactive discussion on current regulatory topics. Seats are limited, so register today!
Regulatory Brief: Proposed Rule to Support Reproductive Health Privacy (April 2023)
Following the Supreme Court decision in Dobbs, President Biden directed that the Department of Health and Human Services (HHS) and the Federal Trade Commission review existing laws and regulations for opportunities to further bolster reproductive healthcare. This regulatory brief explains the April 2023 NPRM that was released as part of this initiative.
HIPAA vs. HITECH vs. Cures Act: A Fragmented Regulatory Landscape
The healthcare privacy landscape in the U.S. is fragmented, lacking a universal law and relying on a patchwork of federal and state regulations overseen by multiple agencies. This whitepaper sheds light on federal privacy laws, patient access regulations, and how the existing patchwork fails to offer comprehensive patient privacy protections.
5 Common “Tells” of a Fraudulent Request
Fraudulent requests are a growing concern with far-reaching risks, from compromising sensitive patient data to violating privacy regulations and facing potential legal consequences. We compiled a list of “red flags” for the HI community as a reference to identify and stop these attacks.
Sign up to Receive Compliance & Regulatory Updates
In the News
October 23, 2024
HHS Outlines Strategic Approach to Health Care Cybersecurity
TechTarget | HHS Deputy Secretary Andrea Palm outlined a comprehensive cybersecurity strategy focused on strengthening accountability, financial support and coordination. The strategy includes leveraging cybersecurity performance goals to establish clear standards, updating the HIPAA Security Rule to incorporate new cybersecurity requirements, $240 million in funding from the Hospital Preparedness Program and a one-stop shop for health care cybersecurity resources.
October 16, 2024
Most HIEs Routinely Use HL7 v2 and CDA Health Data Standards
TechTarget | Health information exchange organizations are adopting health data standards at varying rates, with a recent data brief from the Assistant Secretary for Technology Policy and ONC revealing widespread use of HL7 v2 and CDA standards but slower adoption of FHIR APIs. Additionally, 30% of HIEs are unsure if their data adheres to USCDI standards, highlighting the need for greater awareness and standardization in data exchange practices.
October 9, 2024
As Hurricane Milton Nears Florida, Hospitals and ‘Historical’ Number of Healthcare Facilities Evacuate
Chief Healthcare Executive | Hospitals in Florida are preparing for Hurricane Milton, with many evacuating or transferring patients to ensure safety. As of Tuesday, 10 hospitals and over 200 healthcare facilities, including nursing homes, had evacuated in anticipation of the storm. Healthcare systems are also closing clinics, delaying non-emergency surgeries, and shifting to telehealth.
October 8, 2024
HHS Settles 2 Investigations Under HIPAA Security Rule
TechTarget | The HHS settled two ransomware investigations involving potential HIPAA Security Rule violations, resulting in $490,000 in civil penalties. These cases involved Cascade Eye and Skin Centers in Washington State and Providence Medical Institute in California, marking OCR’s fourth and fifth enforcement actions for ransomware incidents.
September 30, 2024
Vice Presidential Candidates’ VA Medical Records Breached
USA Today | At least a dozen workers at the Veterans Health Administration, including a physician and a contractor, viewed the medical records of vice presidential nominees JD Vance and Tim Walz this summer on their work computers. Investigators are trying to determine the employees’ motives and whether any information was shared, and Veterans Affairs Secretary Denis McDonough sent a message to all VA employees reminding them about privacy rules.
Need a roadmap to maintain compliance?
Regulatory Links
HIPAA – HHS Offices for Civil Rights (OCR) and the National Coordinator for Health Information Technology (ONC)
Individuals’ Right under HIPAA to Access their Health Information 45 CFR 164.524
Patient Access to Health Records
Information Related to Mental and Behavioral Health, including Opioid Overdose
Frequently asked HIPAA questions
Elizabeth is responsible for the administration of Verisma’s privacy and compliance programs, working with clients to implement evidence-based best practices, and overseeing Verisma’s thought leadership initiatives. She has worked in HIM and ROI for over 14 years covering all areas of the industry from customer service to compliance. She currently serves as delegate to the AHIMA House of Delegates and Secretary for AHIOS. Ms. McElhiney holds a B.A. in Political Science from Illinois Wesleyan University and a master’s degree in health administration with a specialization in Health Informatics from Capella University.