HIPAA Penalty Changes

On January 5, 2021, H.R. 7898 was signed into law by President Trump. This new law modifies the HITECH Act such that when an organization experiences a breach, fines and/or penalties may be reduced if (for at least a year) they have instituted “recognized security practices” as defined within the law.

CMS Finalizes Major Changes to ACO Program

Back in August of 2018, as part of the Medicare Shared Savings Program (Shared Savings Program), CMS proposed some sweeping changes for Accountable Care Organizations (ACOs). There has been some controversy over these changes which require ACOs to move to two-sided models. In this Final Rule which was scheduled to be published in the Federal Register …

Q/A: Someone Broke into My Office. What do I do Now?

My office was broken into last night. I use electronic health records, but we do store some protected health information for my patients in paper files. These files are not secured, so the burglars did have access to them. It did not appear that the files were touched as the burglars were looking for cash. What responsibilities to I have to my patients in a situation like this? Do I need to contact them and advise them that their PHI could have been compromised?