Articles

What Is the Minimum Necessary Standard & What Does It Mean for Your Practice?

Do not be misled by complaining requestors under the wrongful claim of “Minimum Necessary” Violations. Annoyed and confrontational requestors may challenge the content provided in response to a request for… Read More

10 Myths of Security Risk Analysis Debunked

The HIPAA Security Rule requires organizations subject to HIPAA to conduct a Security Risk Analysis (SRA) to identify, address and mitigate risks to protected health information (PHI). The Office of… Read More

Unauthorized Disclosures, MGMA and Kathryn Ayers Wickenhauser

One of the inevitable demons in healthcare is that of accidental disclosure of protected health information (PHI). There is a solid risk that your healthcare organization has already experienced this… Read More

Requirements of a Comprehensive Security Risk Analysis

HIPAA requires covered entities and business associates conduct a Security Risk Analysis (SRA) to ensure compliance with addressable and required elements of the HIPAA Privacy and Security rules. The intent… Read More

Zix – Sensitive Emails Require Extra Security

There are two main options for sending and receiving secure email in healthcare: Zix and Barracuda. At DataFile, we use ZixMail to encrypt electronic communications containing PHI or other sensitive… Read More

It’s the Final Countdown! Complete Your SRA Before Year-end

Our apologies if THAT song from the 80s is now playing in your head, but it may be the reminder you need to get this required year-end to-do crossed off… Read More