<![CDATA[[SecurityRatty] tag: hhs]]> http://securityratty.com/tag/hhs Wed, 28 Nov 2007 18:45:53 +0000 iRatty Engine http://blogs.law.harvard.edu/tech/rss <![CDATA[Yes Virginia there really are HIPAA police]]> http://securityratty.com/article/d0bc1624fe44937818753412e25aeeaa http://securityratty.com/article/d0bc1624fe44937818753412e25aeeaa

One of the things that I have always not understood about HIPAA is what teeth do these regulations have and who is going to enforce them.  There are plenty of firms willing to take your money and rubber stamp you HIPAA compliant, but who is going to say your not HIPAA compliant and why should you care. Finally reading this article in Security Bytes it looks like the federal government has stepped up to enforce HIPAA and have put some bite behind the bark. Providence Health in Seattle was fined 100k by US Department of Heath and Human Services for losing data containing patients information. 

 

I say good for the HHS!  A few well publicized fines where people had to pay real money will go further in getting people to take HIPAA seriously than all of the other dog barking and warnings that have taken place to date.  The same goes for other regulations and statues on compliance as well.  Lets hear about some financial sanctions or penalties around PCI and you will see a drastic rise in compliance there as well.  Rules and regulations without enforcement serve no purpose at all and hurt more than they help.

Related articles by Zemanta
Zemanta Pixie
]]> Fri, 25 Jul 2008 11:58:50 +0000 hipaa enforce enforce hipaa records hipaa hurray hipaa compliant health care records care regulations online health records Yes Virginia there really are HIPAA police <![CDATA[Yes Virginia there really are HIPAA police]]> http://securityratty.com/article/32e9a69dd0414f72767bec1ca3e39a8c http://securityratty.com/article/32e9a69dd0414f72767bec1ca3e39a8c

One of the things that I have always not understood about HIPAA is what teeth do these regulations have and who is going to enforce them.  There are plenty of firms willing to take your money and rubber stamp you HIPAA compliant, but who is going to say your not HIPAA compliant and why should you care. Finally reading this article in Security Bytes it looks like the federal government has stepped up to enforce HIPAA and have put some bite behind the bark. Providence Health in Seattle was fined 100k by US Department of Heath and Human Services for losing data containing patients information. 

 

I say good for the HHS!  A few well publicized fines where people had to pay real money will go further in getting people to take HIPAA seriously than all of the other dog barking and warnings that have taken place to date.  The same goes for other regulations and statues on compliance as well.  Lets hear about some financial sanctions or penalties around PCI and you will see a drastic rise in compliance there as well.  Rules and regulations without enforcement serve no purpose at all and hurt more than they help.

Related articles by Zemanta
Zemanta Pixie

]]> Fri, 25 Jul 2008 11:01:24 +0000 hipaa enforce enforce hipaa records hipaa hurray hipaa compliant health care records care regulations online health records Yes Virginia there really are HIPAA police <![CDATA[The Case for Automated Log Management in Meeting HIPAA Compliance]]> http://securityratty.com/article/c3593de019b162a8f222b69c3636bffd http://securityratty.com/article/c3593de019b162a8f222b69c3636bffd Wed, 28 Nov 2007 18:45:53 +0000 hipaa human standards ensure department health hhs privacy impact The Case for Automated Log Management in Meeting HIPAA Compliance