Tag: HIPAA

The healthcare industry faces a plethora of serious cybersecurity risks. Indeed, 2021 saw a record number of major health data breaches in the U.S. —  the breach notification portal of the U.S. Department of Health and Human Services lists at least 713 incidents affecting 45.7 million...

The U.S. Department of Health and Human Services (HHS) requires healthcare entities to follow the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This act requires healthcare entities to implement policies and procedures to safeguard the privacy and security of patients'...

HIPAA compliance requires healthcare providers and their business associates to safeguard protected health information (PHI) through privacy and security rules, risk assessments, and breach notifications. Covered entities must implement administrative, technical, and physical safeguards, including...

The Health Insurance Portability and Accountability Act (HIPAA), as amended by the Health Information Technology for Economic and Clinical Health (HITECH) Act, is designed to keep individuals’ medical information and health records safe. By achieving and maintaining HIPAA compliance, healthcare...

Healthcare organizations must ensure cloud storage services comply with HIPAA by securing electronic protected health information (ePHI) through encryption, access controls, activity monitoring, and data classification. Providers like Microsoft OneDrive, Google Drive, Dropbox Business, and Box...

Microsoft 365 can support HIPAA compliance through its built-in security controls, business associate agreement (BAA), and Compliance Center tools. Covered entities must enable features like encryption, access controls, audit logs, and multi-factor authentication, while ensuring staff follow...

HIPAA requires healthcare organizations to protect electronic protected health information (ePHI) through privacy and security rules that enforce confidentiality, integrity, and availability. Compliance demands access controls, encryption, auditing, and workforce training, as well as safeguards...

Netwrix conducted its 2017 IT Risks Survey to learn more about the security, compliance and operational issues that bother organizations worldwide. We asked IT pros from over 30 industries about their thoughts on the adequacy of existing IT security controls, the biggest IT risks they face every...

Part two of a Disaster Recovery process is the actual plan. You have to look at what could go wrong and either eliminate the possibility it would, or at least lower the impacts. So, if you failed to avoid the problem, you have to have a plan to meet it and deal with it. There’s a lot of really...