Workshop event hosted by Kalibr

Workshop event hosted by Kalibr

I will be speaking at an upcoming workshop hosted by Kalibr.   Kalibr is a financial services group aimed specifically at physicians and dentists.   If you are a physician or dentist, the event is free to attend and dinner will be provided.   If you are interested in attending, please RSVP to: JohnMcCadden@TheNautilusGroup.com   The […]

Business Associate Agreements Between Covered Entities

Business Associate Agreements Between Covered Entities

During our mock HIPAA audit process, we always verify Business Associate Agreements (BAAs) for our clients who are either Covered Entities (CEs) or Business Associates (BAs). In the process of deciding which BAAs are required, we are often asked about what agreement needs to be in place between two CEs who are working together. For instance, […]

How to Prepare For HIPAA Breaches

How to Prepare For HIPAA Breaches

There are many steps you can take to prepare your organization for a HIPAA breach. If you are proactive, you can mitigate the severity of a breach considerably. And if you have the right policies in place, you can save your practice from large fines and other financial costs. Lets go over the things your […]

HIPAA and Minimum Necessary Disclosures

HIPAA and Minimum Necessary Disclosures

HIPAA regulations state that when using or disclosing PHI (protected health information) or when requesting PHI from another covered entity (a doctor’s office, dental practice, etc), a covered entity must make reasonable efforts to limit PHI, to the minimum necessary, to accomplish the intended purpose of the use, disclosure or request. So how do we accomplish […]

Rules For Sending And Receiving Protected Health Information (PHI)

Rules For Sending And Receiving Protected Health Information (PHI)

HIPAA requires that covered entities (organizations who provide treatment to patients, bill insurance plans, or create protected health information (PHI)) must protect their PHI. This protection extends to sending and receiving PHI. Moreover, there are specific rules for how to send PHI to outside entities like other practices, insurance companies, and patients themselves. First, lets […]

HIPAA Compliance For Nonprofit Organizations

HIPAA Compliance For Nonprofit Organizations

There are more than 1.5 million nonprofit organizations in the United States. Of those, the National Center for Charitable Statistics estimates that over 170,000 are in the health related sector. Many of these health services nonprofits are currently unaware that HIPAA laws apply to them. This leaves nonprofits vulnerable to not only audits from the […]

The Importance of Encryption for HIPAA Compliance

The Importance of Encryption for HIPAA Compliance

Encryption. . .what does it mean to encrypt something? Why is it important? And why is it particularly important for covered entities and business associates in the health services industry? What can you do to make sure your data is encrypted while it is being transferred from one place to another and while it is […]

HIPAA Audits Are Coming To Dental Practices

HIPAA Audits Are Coming To Dental Practices

Starting in February of 2016, the Office of Civil Rights (a division of the US Department of Health and Human Services) began phase 2 of the HIPAA audit program. What does this mean for dental practitioners and other health service providers? What does a health service provider need to do to be prepared for an audit? […]