Records of 135,000 Patients May Have Been Compromised in the Second Largest HIPAA Breach of 2018
A malware infection at St. Peter’s Surgery & Endoscopy Center in New York has potentially allowed hackers to gain access to the medical records of as many as 135,000 patients.
Read more here: https://www.hipaajournal.com/new-york-surgery-endoscopy-center-discovers-135000-record-data-breach/.
OIG's 2019 Budget Request Spurs Preparation for More Acute Healthcare Enforcement
The OIG emphasized the impact of more sophisticated data analytics in its 2019 budget request.
Read more here: https://www.fiercehealthcare.com/aca/oig-budget-data-analytics
Some Experts Warn That Medical Devices Might be Vulnerable to a Remote Hacking Attack
Expoerts discuss the vulnerabilities of heart implants, insulin pumps, and other medical devices. Read more here:
https://www.webmd.com/heart-disease/news/20180220/could-hackers-target-heart-devices#1
Consequences for HIPAA violations don’t stop when a business closes
A receiver appointed to liquidate the assets of Filefax, Inc. has agreed to pay $ 100,000 out of the receivership estate to the to settle potential HIPAA violations. Even closing the business didn't allow it to avoid fines and penalties.
Read More Here:
https://www.hhs.gov/about/news/2018/02/13/consequences-hipaa-violations-dont-stop-when-business-closes.html
Memphis rehabilitation center to pay $500K for providing 'worthless' services
On February 5, 2018, McKnight’s Long-Term Care News reported, “Spring Gate Rehabilitation and Healthcare Center in Memphis will pay $500,000 to federal authorities and Tennessee to resolve false claims allegations.
“The Department of Health and Human Services' Office of Inspector General alleged that from 2012 to 2015, Memphis Operator LLC, doing business as Spring Gate, provided substandard and ‘worthless’ nursing home services to residents, care deemed so deficient it can't be claimed through Medicare or the state's Tenncare program.
“The allegations were first raised in a False Claims Act lawsuit brought by a whistleblower, according to a news release. The OIG intervened in the case and Spring Gate cooperated to reach a resolution.”
READ MORE
CMS Clarifies Its Texting Rules for Healthcare Providers and Organizations
After a December 18, 2017 HCCA report that CMS had sent emails to at least two hospitals saying that even secure text messaging applications were not permitted, CMS recently clarified its position on texting for healthcare providers and organizations.
Pursuant to a December 28, 2017 letter, CMS explained that it "recognizes that the use of texting as a means of communication with other members of the healthcare team has become an essential and valuable means of communication among the team members."
The letter further stated that "in order to be compliant with the CoPs or CfCs, all providers must utilize and maintain systems/platforms that are secure, encrypted, and minimize the risks to patient privacy and confidentiality as per HIPAA regulations and the CoPs or CfCs. It is expected that providers/organizations will implement procedures/processes that routinely assess the security and integrity of the texting systems/platforms that are being utilized, in order to avoid negative outcomes that could compromise the care of patients.”
A copy of the CMS letter can be found here: https://www.cms.gov/Medicare/Provider-Enrollment-and-Certification/SurveyCertificationGenInfo/Downloads/Survey-and-Cert-Letter-18-10.pdf.
Compliagent's COO, Paige Pennington, Addresses New Regulatory Developments in LTC Discharge and Transfer Requirements at the National ACO, Bundled Payment & Readmission Summit
On October 26, 2017, Compliagent's COO, Paige Pennington, delivered a talk regarding new regulatory developments in LTC discharge and transfer requirements at the National ACO, Bundled Payment & Readmission Summit (Part of the 2017 NRPC C-Suite Invitational Series) at the California Endowment Conference Center in Los Angeles, California.
Call or email us for more information about how these changes may impact your facility -- 310-996-8950; info@compliagent.com.