According to the 2017 Cost of Data Breach Study, healthcare data breach costs are the highest among all sectors for the seventh year straight. The annual study, conducted by Ponemon Institute and sponsored by IBM Security, reveals that the average cost of a data breach is currently $3.62 million globally, which is actually a 10% […]
When most people hear about HIPAA violations, usually the first thing that comes to their mind is ‘data breach’ – hardly surprising considering how frequently large-scale data breaches occur within the healthcare sector. But while healthcare data breaches have become an unfortunate fact of life, there are a number of lesser known HIPAA violations that […]
The 2017 Data Breach Investigations Report (DBIR) published by Verizon reveals exactly what is happening in the world of cyber security right now. This year’s report is based on analysis of over 40,000 incidents, including 1,935 confirmed data breaches. The report reveals that a large number of organizations continue to rely on the same defense […]
Most consumer facing industries have experienced a huge shake up by innovative technologies in the past decade. Despite this, the lending industry is notorious for falling behind the demand of its savvy consumers when it comes to embracing innovations in PropTech. One of the technologies that has huge potential to disrupt and transform the business […]
Last month, President Trump signed his long-awaited cybersecurity executive order, titled “Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure.” The aim of the executive order is to modernize the federal IT network and national cybersecurity risk management. While much of the executive order specifically addresses defense law enforcement agencies, a section addresses critical […]
For the past 9 years, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has published all reported breaches of unsecured protected health information (PHI) affecting 500 or more individuals on its Breach portal – more commonly referred to as the “wall of shame” – as required by section 13402(e)(4) […]
Last week, the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) published new guidance for covered entities on the correct response procedures following a cyberattack. Titled ‘My entity just experienced a cyber-attack! What do we do now?’ the guidance consists of a quick response checklist and an accompanying infographic to highlight […]
According to President Trump, “Dodd-Frank is a disaster”. Throughout his election campaign, Trump promised to reform financial regulations, and in the last few weeks, he has delivered on these promises by signing executive orders to get the ball rolling on dismantling the act. Trump has been vocal in expressing his desire to revoke legislation around […]
Lack of BAA leads to $31k HIPAA settlement The Office for Civil Rights (OCR) recently announced that The Center for Children’s Digestive Health (CCDH) has paid a settlement of $31,000 to The Department of Health and Human Services (HHS) for potential violations of The Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule. In its […]
The recently published IBM X-Force Threat Intelligence Index reveals 2016 was a record breaking year for data breaches, with more than 4 billion records compromised – which is more than the combined total from the two previous years. Last year’s figure is a significant 566% increase from the 600 million exposed in 2015. The report […]
A new study of HHS statistics on data breaches reported from late 2009 through 2016 published by JAMA Internal Medicine provides new insight into who is most vulnerable to data breaches in the healthcare industry. In addition to larger hospitals with a high bed count, the study revealed that teaching hospitals are more likely to […]
April 22nd is World Earth Day, with this year’s campaign focused on educating people about the environment and climate change. The day serves as an important reminder that we are all responsible for stepping up and doing our bit for the planet. Something as simple as switching from manual fax to cloud fax can massively […]
The latest Threat Horizon report, published annually by non-profit organization the Information Security Forum (ISF), has identified a number of security concerns that it predicts will become more prominent over the next few years. Within this report, ISF has highlighted three key trends that organizations need to be aware of: Disruption, distortion, and deterioration. In […]
XDOC recently attended the MBA National Technology in Mortgage Banking Conference & Expo (more commonly known as MBATech) in Chicago. Here are three takeaways from this year’s event. Rise of the Fintech Before this year’s event we predicted that the impact of Fintech on the lending industry would be a hot topic, and we weren’t […]
A growing number of medical professionals are turning to mobile devices to coordinate care and manage patient health outcomes. Yet the use of text messaging specifically remains a contentious topic in the healthcare industry. Back in 2011, The Joint Commission published a document stating that it is not acceptable for physicians or licensed independent practitioners […]
In a week’s time, lending industry professionals from across the country will gather in Chicago to learn more about the challenges and opportunities presented by the increased adoption of technology within the sector. The MBA National Technology in Mortgage Banking Conference & Expo, more commonly referred to as MBATech, is set to feature a number […]
Scrypt recently attended the 2017 HIMSS Annual Conference & Exhibition (HIMSS17), the biggest date in the health IT calendar. Now the dust has settled on this year’s event, we thought we’d share three of the major talking points from the three days we spent in Orlando. Cybersecurity Cybersecurity has long been one the biggest talking […]
A growing number of health providers are looking to mobile devices to improve operational efficiencies and patient health outcomes within their organizations. Yet, according to The U.S. Department of Health and Human Services (HHS), a reported 10% of major health data breaches involve a mobile device. This figure considered, it comes as little surprise that […]
A recent survey conducted by Pew Research Center revealed that most Americans fail to follow security best practices, even after experiencing a form of data theft or fraud. Pew studied more than 1,000 American adults last year to gain insight into their attitudes toward cybersecurity and the measures taken to keep online data protected, finding […]
The ‘digital revolution’ has been underway for some time now; consumer demand for convenience has escalated as technology becomes more advanced, and in the vast majority of industries, there are disruptors primed to shake up the status quo. The benefits of adopting new technologies is becoming apparent across a wide range of sectors, with solutions […]
In just under a week’s time, the doors will open to The 2017 HIMSS Annual Conference & Exhibition (HIMSS17), the biggest date in the health IT calendar. Over 40,000+ health IT professionals, clinicians, executives and vendors from around the world are expected to attend this year’s event, which will be hosted in the Orange County […]
It’s no secret that healthcare data is attractive to hackers. Hacking and IT-related incidents make up the majority of compromised PHI, but why exactly has the healthcare sector become such a popular target? Long term benefits PHI is thought to be approximately 10 times more valuable to cyber criminals than credit card data due to […]
We recently shared a post all about Data Privacy Day which is tomorrow: Saturday, January 28. The day aims to remind businesses and internet users to consider the importance of protecting the privacy of their personal information online. The following data privacy tips are intended to help businesses that collect, use, and share individual’s […]
January 28 marks National Data Privacy Day, an educational initiative that aims to raise awareness and promote privacy and data protection best practices. The occasion was originally founded to encourage businesses and internet users to reflect on the importance of protecting the privacy of their personal information online, particularly on social networks. Today, the focus […]
2016 was a busy year for HHS Office for Civil Rights (OCR), the agency responsible for enforcing the Health Insurance Portability and Accountability Act of 1996 (HIPAA). In the year when HIPAA itself celebrated its 20th birthday, let us cast our minds back to some of the major HIPAA-related stories of the past 12 months, […]
2016 was a defining year for politics, with Donald Trump pulling off a victory that surprised many pundits. Let’s take a look forward to what 2017 may hold for the lending industry, and the impact of recent events on house prices and lending. Millennials set to dominate the market According to the National Association of […]
As the world becomes increasingly interconnected, technology adoption remains one of the defining factors in the modern healthcare environment. Here are three technologies that will help shape the future of healthcare through 2017 and beyond. Wearables Wearable medical and fitness technology is becoming more common throughout the world, and as more devices enter the market, […]
Implement an efficient incident response plan As the new year is upon us, it’s time to start thinking of some resolutions for the year ahead. Why not try something different this year and set your organization some resolutions based on improving cybersecurity, such as the following: Talk to your employees more Human error is frequented […]
The holidays are coming, and most of us are looking forward to taking some time away from work, to relax and unwind with friends and family. With this, many of us will set our workplace computers to an ‘out of office’ status, and carry out any essential tasks remotely from our mobile phones, laptops and […]
Encryption is the process of converting readable information into indecipherable code, while in transit or storage. Encryption is important because it prevents unauthorized parties from accessing sensitive data or information, which for the healthcare industry in particular, is critical for keeping patient health records private. While no organization is immune to the threat of security […]
Cloud fax is transforming day-to-day workflows for businesses of all sizes across a wide range of industries. As well as helping save the planet (enough of a reason to switch from manual faxing alone, in our opinion), cloud fax services can benefit businesses in a number of ways. While not an exhaustive list, the following […]
Email is a much newer technology than fax, but fax use continues to grow by more than 12% every year. This has left many onlookers confused as fax seems like it should be left in the past – how wrong they are.
The term shadow IT is used to describe any IT system being used within an organization, without the organization’s knowledge or consent. While shadow IT can help to improve workflows, it can also introduce security failings which may not be picked up until it’s too late. According to a recent report by Gartner, it is […]
Mobile messaging is changing communication in healthcare. For health professionals, mobile messaging is a fast and efficient way of managing workflows and coordinating care, while from a patient’s perspective, the platform provides a convenient and familiar line of communication with practices and caregivers. More traditional methods of communication, like paging, are typically limited one-way communication […]
The Department of Health and Human Services’ (HHS) guidance on security and privacy for HIPAA covered entities fails to comply with federal guidelines, according to a recent U.S. Government Accountability Office (GAO) report. The report, released last Monday, found that HHS guidelines do not fully address key security controls of the Cybersecurity Framework, issued by […]
Mobile messaging has become an integral tool for healthcare professionals in recent years, with an increasing number of care teams looking to HIPAA-secure mobile messaging solutions as an alternative to outdated paging systems. However, with so many vendors out there, finding a solution which is reliable, flexible and truly secure, is often easier said than […]
Social media plays an ever growing role in the modern healthcare setting. Whether used as a means of obtaining health information, sharing ideas, or developing professional relationships, social media offers many potential benefits for health professionals and consumers alike. Below are three examples of how social media is positively impacting health care. 1. Professional sounding […]
New guidance released by Office for Civil Rights (OCR) confirms that cloud service providers (CSPs) that store patient health information must now comply with HIPAA. If you’re thinking, “why only now?”, you’re not alone. Cloud storage is one of HIPAA’s many gray areas, due the fact CSPs have, until now, been able to circumnavigate their […]
Scrypt, Inc. was recently recognized by the Austin Business Journal as one of the fastest growing companies in in Central Texas in their annual Fast50 contest. This is the third year in a row that Scrypt has been featured on this list. To qualify for the Fast50, companies based in Central Texas must have experienced dramatic […]
Twenty years ago, on August 21, 1996, President Bill Clinton signed the Health Insurance Portability and Accountability Act (HIPAA) into law. In those two decades, healthcare has changed a lot, and HIPAA has assisted with those changes along the way. Those original privacy provisions, as signed by Clinton, totaled 337 words. By 2002, when the […]
For healthcare professionals, having access to reliable and secure lines of communication is essential for delivering a timely and substantial level of care to patients. In today’s modern practice, mobile messaging has become an integral component in the clinical workflow, due to its many benefits, which include: Two-way communication Unlike paging, mobile messaging is a […]
According to a 2015 report into smartphone usage in the U.S., 97% of smartphone owners use text messaging as a means of communication on a regular basis, making it the most widely-used mobile feature of all. With these numbers in mind, it is clear to see why organizations are embracing text messaging as a way […]
The U.S. Department of Health and Human Services (HHS) recently issued a report to Congress, outlining the gaps that exist in the scope of health data protection. The 32 page document serves to recognize that “While HIPAA serves traditional health care well and continues to support national priorities for interoperable health information with its media-neutral […]
Healthcare organizations have generally been slow at implementing appropriate cybersecurity safeguards, positioning the industry as a magnet to cybercriminals. In fact, a recent poll highlights that the majority of U.S. hospitals have fallen victim to at least one ransomware attack in the past twelve months. In recognition of this vulnerability, the Health and Human Services’ […]
For time immemorial, mortgage lenders have been required to adhere to (1) The Truth in Lending Act (TILA) and (2) The Real Estate Settlement Procedures Act (RESPA). These two policies were designed to protect consumers by disclosing to them the cost a mortgage loan, and the cost of closing a loan transaction respectively. Both TILA […]
Catholic Health Care Services (CHCS), a Pennsylvania based company that provides management and information technology services as a business associate to six skilled nursing facilities, has been ordered to pay $650,000 to settle HIPAA violations connected to the theft of an employee’s iPhone. The incident compromised the PHI of 412 nursing home residents – including […]
Medical Professionals Seek Secure Mobile Communication Platform for Efficient Workflow – Not Social NetworksJul 16, 2016
Mobile communication is an integral and growing part of every aspect of modern life, including healthcare. Fast and secure communication between care team members can measurably improve clinical efficiency as well as patient outcomes—this is a given. In addition, federal and state requirements for electronic health recordkeeping are pushing many medical professionals to aggressively begin […]
It will probably come as no surprise that the average cost of a data breach in the healthcare industry was the highest of all surveyed industries in a recent Ponemon Institute report. Setting a new record high at $402 per capita cost, healthcare data breaches have increased substantially above the overall mean of $221. […]
The industry news is often filled with reports surrounding the topic of patient privacy, generally stemming from a breach of medical records without any form of consent in place. But issues can also arise when patient information is not shared with family and friends, either because medical staff have withheld details, or patients themselves choose […]
Unless you’ve been living under a rock for the past few weeks, you’ll undoubtedly be aware that LinkedIn is back in the media spotlight, and once again, it’s for all the wrong reasons. Back in 2012, the business-oriented social networking platform fell victim to a data breach that resulted in more than 6.5 million of […]
The Sixth Annual Benchmark Study on Privacy and Security of Healthcare Data from Ponemon Institute reveals the leading cause of data breaches for hospitals and medical providers for the second consecutive year is cybercrime. Despite experiencing multiple data breaches of this nature, the majority of healthcare organizations are lacking the resources to effectively manage […]
Physicians have long recognized the benefits of a mobile workflow, having the ability to carry out tasks with minimal disruption is an effective means of delivering care to their patients. In fact, around 87 percent of doctors are currently using smartphones and tablets to complement their workload. Secure text messaging is becoming an increasingly popular […]
A few months back, we published a guide detailing some of the ‘gray areas of HIPAA’ that all covered entities and business associates need to be aware of. The HIPAA rules apply to behavioural and mental health in much the same way, but there are a few differences for providers who specialise in these fields. […]
Cyber criminals are becoming more sophisticated in their attacks due to increased skills and resources, according to a new cybersecurity report by Symantec. The 2016 Internet Security Threat Report provides a detailed overview and analysis of the year’s global threat activity, including rising trends, malicious activity, spam, and phishing. Below are seven takeaways from […]
For Earth Day we’ve created an infographic illustrating the how manual fax machines damage the environment. Switch to Sfax cloud faxing and reduce your environmental impact.
Last week, The HHS Office for Civil Rights (OCR) kicked-off its long anticipated program of Phase 2 HIPAA Audits of covered entities and their business associates. The process will investigate policies and procedures adopted and employed by these parties to meet standards and specifications of the HIPAA Privacy, Security, and Breach notification rules. Does this […]
A recent report published by Verizon, ‘Data breach digest – Scenarios from the field’ has revealed some interesting statistics about data breaches. The report looks at 18 data breach scenarios, which were selected due to their prevalence and/or lethality. Of these 18 scenarios, 12 were chosen as they are the most common types of data […]
The Office for Civil Rights’ Phase 2 HIPAA audits are looming, and organizations need to be prepared. However, many entities that handle PHI are unaware of where they may be noncompliant due to confusion within some areas of HIPAA. The HIPAA rules apply to many industries outside of healthcare. Despite this, many organizations conclude that […]
The HIMSS Annual Conference & Exhibition has long been a hotly-anticipated date in the health IT calendar, and this year’s event was no exception. As the dust settles after HIMSS16, we’ve compiled five of the biggest topics of conversation from our five days in the Mojave Desert. Cybersecurity Cybersecurity was a major talking point of […]
The HHS Office for Civil Rights (OCR) has published new guidance on its mHealth Developer Portal, to help app developers determine how HIPAA regulations might apply to the products they are building. The new guide, entitled Health App Use Scenarios & HIPAA, includes six hypothetical scenarios which set out to address the following two questions: […]
In 2002, California became the first state in the country to enact a data breach reporting law to help protect consumers from the effects of having their personal data breached. In September 2014, California’s breach notification deadlines for medical information breaches were extended from 5 business days to 15 business days for clinics, health facilities, […]
There have been a number of high profile data breaches during 2015, particularly in the healthcare sector, but also some significant breaches in other sectors that we felt were worth a mention in this year’s data breach round up. While reported breaches are down by 2.5% YoY, it is clear from the variety of organizations […]
Imagine your grandmother is hospitalized after suffering a heart attack. To everybody’s relief, she receives state-of-the-art medical care in a top-notch hospital a mere 10 miles from home. On discharge day, she is sent home with a long list of instructions, new medications, and a recommendation she follow up with her primary care doctor within […]
The 2015 Protected Health Information Data Breach Report by Verizon brings to light issues associated with the safeguarding of protected health information (PHI), the main causes of disclosure, and advice for organizations that handle such data. While the data analysed in this report has a strong US bias (83%), the report should serve as a […]
Social media is an increasingly common presence in healthcare, among providers and consumers alike. For healthcare providers, social media can be an extremely effective marketing tool, acting as a direct line of communication between current and prospective patients. Social media sites, forums and blogs also act as a valuable platform for healthcare professionals to share […]
Barely a week goes by nowadays without a new high profile data breach hitting the headlines. While efforts have undoubtedly been stepped up with regard to cyber security – by both covered entities and industry regulators – evidently there is still much work to be done. Last week, New York’s leading banking regulator – the […]
When selecting a HIPAA fax provider, you’d think that companies who state they offer HIPAA compliant faxing solutions would be prepared to sign a Business Associate Agreement (BAA), right? Well, you’d be wrong. Some cloud fax providers don’t sign a BAA. They advertise that they are HIPAA compliant, but according to the HIPAA Omnibus Rule […]
It’s been a long time coming, but according to OCR, the phase 2 HIPAA audits are expected to begin in Spring 2016, so you’ll need to make sure your organization is prepared. With a high number of breaches occurring in the last two years being attributed to a lack of encryption, employee negligence and cyber […]
The first round of HIPAA audits conducted by OCR in 2012 seem like a distant memory. With the threat of audits looming since fall 2014, organizations have had longer than expected to prepare for the phase 2 audits, in part due to the delays caused by slow web portal development and OCR resources being stretched […]
A recent study has shown that BYOD (bring your own device) is decreasing amid concerns around data security. Of the organizations surveyed, 73% allowed BYOD, down from 88% in 2014. This is in contrast to the Gartner research conducted at the end of 2014, which projected that 90% of organizations would support some aspect […]
Earlier this month HHS’ Office for Civil Rights (OCR) launched an online portal intended to help mobile health app developers better understand the HIPAA privacy and security rules. The OCR explains, “many mHealth developers are not familiar with the HIPAA Rules and how the rules would apply to their products. Use this site to help […]
Concerns around wearable tech meeting HIPAA compliance have been much discussed following the launch of Apple Watch, and Apple fitness and medical research frameworks HealthKit and ResearchKit. Fitbit is obviously a company that took note of these concerns after they announced that their wearable tech is now HIPAA compliant. This will allow Fitbit to expand […]
One big question that is frequently asked among lenders of all sizes is whether to implement an on-premises deployment of their electronic document management (EDM) solution, or move to the cloud. While each option has its advantages and challenges, organizations have unique needs and characteristics that make one of these options more viable and advantageous […]
The MBA (Mortgage Bankers Association) recently released a whitepaper, The Basic Components of an Information Security Program. The document is intended to provide mortgage industry professionals with an overview of the security risks that affect the lending industry, along with advice for managing those risks. The document is aimed predominantly at small and medium sized businesses, […]
A simple error made by an employee sending an email to a contracted provider resulted in the unintentional disclosure of the medical records of 3,000 clients of the Community Care Services Program based in Georgia. The Community Care Services Program is responsible for helping people at risk of nursing home placement to remain in their […]
BYOD (Bring Your Own Device) has grown steadily over the past few years, and it is showing no signs of slowing down anytime soon. Devices are able to perform tasks far beyond calling and texting, with healthcare professionals now having access to patient data such as electronic medical records (EMRs), results, pharmaceutical information and a […]
No, it’s not your monitor. Over the next several weeks you will notice a change of color around Sfax from blue to purple. The new purple (Pantone #688 and #689 for you design geeks) replaces the original Sfax blue while still keeping it within a ‘healthcare’ color range. We hope you like it as much […]
If you’re in healthcare, odds are you send and receive faxes on a daily basis. Despite the best efforts of the healthcare exchanges, it’s just too early to solve the interoperability issues that prevent the secure sharing of patient data between EHRs. Here’s a helpful list of safeguards to follow when faxing PHI so that […]
It is accepted wisdom that for its universality, immediacy and security, faxing will remain a part of business life for the foreseeable future especially in industries like healthcare where real-time exchange of documents is critical every day. Those troublesome fax machines and fax servers are being phased out in favor of secure digital fax services. […]
The Department of Health and Human Services (HHS) recently released a comprehensive guide to the Privacy and Security of Electronic Health Information that covers a lot of ground in its 7 chapters and 60+ pages. Scrypt, Inc. created a cheat sheet that illustrates the key HIPAA rules around handling protected health information (PHI).
As you may be aware, there have been concerns this month over what have been headlined as ‘critical’ zero-day security flaws for Adobe Flash in the browser. We have seen an enormous amount of press coverage – some of which has been inflammatory and ‘Flash bashing’ for the sake of column inches – rather than […]
Healthcare organizations and other covered entities have an obligation to protect the privacy of the their patients’ ePHI (electronic protected health information). The HIPAA Security Rule requires covered entities and business associates to maintain reasonable and appropriate administrative, technical, and physical safeguards for protecting patients data. As part of this requirement, they must: Ensure […]
Announced in March 2015, ResearchKit is an open-source software framework developed by Apple to aid medical researchers and healthcare organizations in collecting medical information on patients and participants straight from their iPhone or Apple watch. ResearchKit apps created by developers could change the way in which medical research and health monitoring is conducted forever. 1 […]
Business Associates, or BAs, have not been covered by the HIPAA Security and Privacy Rule for as long as the healthcare organizations they provide services to, and this means that some BAs may be unsure of what to do when it comes to being able to handle a data breach incident. No matter the size […]
Up to four million current and former federal employees may have been compromised following a breach of computer systems of the Office of Personnel Management (OPM), making it the largest known cyberattack to occur on a federal network. The attack started in December of 2014 but was not discovered until April of this year. The […]
There is something about the warm California sun and the way it shines when it rises. The rays omit a certain kind of energy that bursts at the seam, awakening each soul lucky enough to share this experience. This is the scene every morning in our San Diego office. However, with that being said, nothing […]
TRID. It sounds like a bad science fiction movie: “The Day of the TRID.” And currently, a lot of lenders are nervous that the TILA-RESPA Integrated Disclosure could become a real life horror show come August 1st, when they are required to merge their Real Estate Settlement Procedures Act and Truth in Lending Act disclosures. […]
A webinar to discuss the findings of The Fifth Annual Benchmark Study on Privacy & Security of Healthcare Data highlighted that healthcare data is becoming targeted by criminals more frequently than ever as patient data becomes a high value commodity on the black market. The benchmark study collected information from 90 organizations, including both covered […]
In our ongoing series called ‘No Robots. Just Humans,’ we offer you a look into the people who make Scrypt the special place that it has become. Especially to the ‘family’ of people that come to work every day. For the last four years, Mari has been a Scrypt Product Manager overseeing two of the […]
The 2015 Data Breach Investigations Report published by Verizon highlights lost and stolen devices that lack encryption as a major cause of data being compromised across all industries. The report estimates a financial loss of $400 million from 700m compromised records – demonstrating the importance of managing data breach risks. Nearly 80,000 security incidents occurred […]
On April 15 2015, the House Energy and Commerce Committee approved the Data Security and Breach Notification Act by a 29-20 vote. The bill is the first federal rule requiring organizations to inform consumers that their personal information may have been compromised by hackers – and will replace any existing State laws. If passed into […]
Austin. The Live Music Capital of the World, home to SXSW, a peculiar nesting place for bats, hometown to arguably the best barbecue in all of the nation (Franklin BBQ) and the place where the famous Austin City Limits Festival calls home. It’s not just these places, it also happens to be one of the two […]
“Pay no attention to the man behind the curtain!” ― L. Frank Baum, The Wonderful Wizard of Oz Contrary to the great words of L. Frank Baum, the man behind the curtain of Scrypt, Aleks Szymanski has a lot to be recognized for. He’s currently blending two companies together into one and taking the business into uncharted […]
The growth in cloud computing has been explosive. In 2010, the cloud computing industry was estimated to be worth $37 billion; by the end of 2015, the global cloud market is expected to reach $121 billion. This increase in cloud adoption is a trend set to continue, with 64% of companies saying they expect to […]
Data encryption is fundamental for the protection of sensitive data and personal information online, find out more here.
As Jerome Meites, HHS Chief Regional Civil Rights Counsel, warns that penalties to date are “low compared to what’s coming up”, it’s time covered entities and business associates take data security seriously.
For those looking to ensure their healthcare data is properly protected, it is worth carefully exploring the measures your chosen service implement.
The threat of PHI data being used for criminal activities is expected to grow – 2014 saw numerous high profile breaches, many of them caused by hackers. However, as the move to ePHI continues, healthcare professionals and their business associates have legitimate access to thousands of patient records at their fingertips, and while the majority […]
Cloud-based file sharing services such as Dropbox and Google Docs offer solutions to many of the document management challenges faced by organizations; it can help to maximize productivity by providing a collaborative way of working, it cuts down on paperwork, and allows users to work remotely across a number of devices. However, hackers are viewing […]
Anthem, the second largest health insurer in the US, announced last week that personal information of up to 80 million customers and employees was the subject of a “very sophisticated external cyberattack”. There have been 40 million people affected by data breaches from multiple entities in the last decade; this breach has the potential to […]
The adoption of electronic patient healthcare information (ePHI), and the widely reported data breaches throughout 2014 has raised concerns around data security, as more and more organizations shift towards implementing measures that could see paper PHI eliminated completely. This is a particular concern for smaller organizations where implementing HIPAA compliant technologies may be a strain […]
Covered entities and business associates need to take extra precautions to protect patient personal health information (PHI), as penalties could be staggering. This has been highlighted recently in the Byrne vs. Avery Center case in Connecticut. Byrne sued the Avery Center for negligence after her personal medical information was disclosed to her ex-partner’s attorneys as […]
There has been no shortage of HIPAA related controversy this year, so with 2015 just around the corner, we thought we’d roundup news highlights from the past 12 months. Increase in complaints The number of HIPAA violation complaints received by the Department of Health and Human Services continued to increase during 2014. By May 2014, […]
The cost to the environment 1 million trees could be saved every year if 5% of organizations switched to a paperless cloud faxing solution. Conventional fax machines are responsible for consuming more than 200 billion pages of paper each year in the US alone – a single machine uses an average of 5,000 sheets of […]
The demand for home health care is expected to continue to rise over the coming decades as millions of baby boomers begin to retire. The US Census Bureau predicts that by 2030, there will be about 72.1 million older persons in the United States; more than twice the number reported in 2000. Data compiled from […]
How secure is your PHI data? HIPAA (Health Insurance Portability and Accountability Act) are set to begin phase 2 audits in 2015, and OCR (United States Office of Civil Rights) have projected that part of the auditing process will include checking whether all systems and software that transmit electronic PHI (Protected Health Information) use encryption […]
The threat of cyber attacks is a very real concern for healthcare industry leaders. Earlier this year, headlines were dominated by Heartbleed – a security bug which compromised users’ personal information by allowing attackers to access protected information via vulnerable versions of OpenSSL software. The latest headline threat comes in the form of Shellshock. Shellshock, […]
Vast amounts of sensitive information is shared within the healthcare industry every day. Email may sound like the most logical tool for sharing such information – it’s quick, fast and easy to use – but it is also inherently insecure. The most common pitfall of email is quite simply human error – sending sensitive information […]
The phase 2 audits will focus on targeting HIPAA Standards that were sources of high numbers of non-compliance in the phase 1 audits. This may include: Risk analysis and risk management Content and timelines of breach notifications Notice of privacy practices Individual access Privacy Standards reasonable safeguards requirement Training to policy and procedures Device/media controls […]
Following the phase 1 audit, which focused exclusively on covered entities, the phase 2 audit conducted by The Office for Civil Rights (OCR) will also focus on business associates. From a pool of approximately 550 – 800 covered entities, which have been randomly selected from the National Provider Database and America’s Health Insurance Plans databases, […]
A spokesperson for the U.S. Department of Health and Human Services’s Office for Civil Rights has urged entities to remain patient whilst an audit web portal is developed.
The one-year grace period is up! If you haven’t reviewed your Business Associate Agreements in the last year, it’s time to check your documentation.
Don’t make the same mistake as these covered entities! Learn from their mistakes and reduce the risk of a HIPAA breach within your organization.
Between 550-800 covered entities will be reviewed in the upcoming Phase 2 HIPAA audits. Find out what’s changed and who will be affected.
In 2012, the Department of Health and Human Services (HHS) alongside the Office of Civil Rights (OCR) undertook HIPAA audits of around 150 covered entities (CE) to assess adherence to the HITECH Act. Focusing on privacy, security, and breach notification, the comprehensive audits analyzed the processes, controls, and policies of selected CEs to verify compliance. […]
With hacking accounting for just 6% of healthcare data breaches, find out how PHI is being put at risk.
As the second largest HIPAA breach ever reported goes public this week, are you up-to-speed with the different types of data breaches?
Did you know there are 18 different identifiers under HIPAA that constitute PHI? Read on to find out more.
Worried about cost, security or implementation? Don’t be! Moving to cloud fax can save you money and make sure your documents remain fully secure. Find out how.
With each month bringing news of another data breach, it is crucial that businesses work with employees and consumers to ensure personal information remains secure.
Have you undertaken a risk analysis? Don’t leave it too late! Read on to find out how you can work towards HIPAA compliancy.
Have you embraced a BYOD culture in your business? Check out our tips for safeguarding sensitive data this summer.
A shock discovery exposes Concentra as another HIPAA breach is uncovered. Find out more here.
Advancements in technology has changed the way business works. Here’s how you can evolve your business with cloud fax.
Don’t let your personal information, or that of others, fall into the wrong hands – follow these dos and don’ts to help protect sensitive data.
Further penalties emphasize the importance of HIPAA compliance as Concentra and QCA Health Plan agree on penalty settlements.
With hacking and security breaches becoming increasingly prevalent, everyone storing private information online needs to take their password security seriously. There is an abundance of information available on creating secure passwords, but it can easily start to feel pretty daunting to try to follow all the rules. Here’s a list of common password tips from […]
Knowledge is power when it comes to efficiently and securing running your business – regardless of size. Empower your workforce, whilst protecting sensitive documents, with these five tips.
Verizon’s Data Breach Investigation Report show Healthcare as top industry for physical data theft and loss. Find out more here.
With cloud fax there’s no need to risk sending sensitive documents by email. Securely send important documents via your mobile or tablet in six simple steps.
Market research confirms a significant increase in EHR adoption amongst solo physicians as cloud technology transforms the Healthcare industry.
Less than 36 hours ago, we learned about a potential security exploit called “Heartbleed” on some websites that use Linux/Apache and OpenSSL to secure customer information. We are unaffected.
Are your vendors taking care with PHI? Here are 3 tips when considering your Business Associates.
With the ‘Digital Government’ focusing on technology it’s more important than ever for professionals to embrace mobile and cloud services. Find out more.
There has been some debate around how long a BA should retain documents containing PHI, as seen in this LinkedIn forum discussion. Some attest that BAs should retain these documents for as short a time as possible while others state regulatory issues that make it necessary to retain these documents for 6 or 10 years.
Under HIPAA ‘covered entities’ must go beyond password protection to protect sensitive information. Find out why here.
Every day healthcare professionals rely on the secure transfer of sensitive documents and data. Find out more about our resolute commitment to HIPAA compliancy.
With BYOD on the rise for healthcare professionals make sure you’re aware of app security risks and to avoid to them.
Whilst manual faxing may be stuck in the 90s cloud fax is here to stay, discover more about cloud fax here.
With patient knowledge of digital privacy falling short, cloud-IT service providers must take responsibility for the security of EHR to protect PHI.
Where do you stand on the health IT ‘digital divide’? Is a lack of financial incentives and technical assistance holding your organization back?
With over 70 breaches added to the HSS Breach Notification Tool since last month, it’s time for healthcare professionals and organizations to make sure HIPAA compliant procedures are in place.
The cloud is becoming an indispensable component of everyday business. Here we discuss considerations for healthcare professionals when it comes to cloud fax and HIPAA.
Cloud-based faxing can help transform productivity, keep your documents secure and help save your business money. Find out how you can revolutionize your business in 2014.
From stolen laptops to programming errors, find out what caused the biggest HIPAA breaches of 2013 and who was responsible.
Whether you’re a small business or a large organization efficiency is crucial for success. Here are five ways you can improve your productivity with cloud fax.
Don’t let misconceptions about fax compromise your business or organization. Here we expose four myths about faxing.
Used correctly both fax and email are undeniably valuable for businesses and organizations, but make sure you’re using the right service at the right time. Find out more.
As 2013 comes to a close, I can’t help but reflect on those who have stood out as real heroes in 2013: Groups who still champion the solo physicians and the right for physicians to remain autonomous, reimbursed fairly, and have their scope of practice respected amongst colleagues in the greater medical community. Our state […]
Start streamlining your business workflow with cloud faxing. Here are five ways in which cloud faxing can benefit your business.
The recent 2012 mHealth Summit in Washington, DC last week had the tech world buzzing about the next innovations that will change healthcare forever. What exactly are those on the cutting edge of mobile health information technology looking for – or offering – this year? As a physician, I hope they are focused not just […]
Steve Jobs once said, “Innovation distinguishes between a leader and a follower.” I wouldn’t have known what he meant right out of residency, thrust into my first “leadership” role. What does it mean after all to be a leader in medicine? Many, like me, were considered a team leader by default, simply because of a […]
With extensive physical, organizational and the technical measures in place you can rest assured that cloud faxing with Sfax is secure.
Online faxing will save your business more than just money. With its ease of use, immediacy of delivery, and universal accessibility Sfax can help revolutionise your business.
Electronic medical record (EMR) integration is certainly a hot topic for any technology in the healthcare world today. The push for integrating mobile communication solutions with the EMR seems logical, but perhaps there are some bigger questions to answer first. While EMRs do a great job of providing digital documentation of a patient’s history of […]
Cut down on pollution with Sfax and save your business money on energy bills, paper and ink costs with online faxing.
Physician wellness – the idea of physicians being taken care of – is not a new concept; however in this new era of medicine, it may mean something different. Is it possible that technology could represent a physician wellness tool? Take for example the idea that a solo physician is able to connect with peers […]
The day-to-day running and efficiency of educational organizations is dependent on the sending and receiving of important and sensitive information. Find out why cloud faxing with Sfax is the ideal solution.
Signing and sending faxes from your computer doesn’t need to be hard. Once you’ve chosen an Sfax plan that suits your needs and made your account, you can start faxing following these five simple steps
Today, over 50% of physicians across the country are employed – either by a hospital or practice group. Those who wish to remain independent are now joining associations to help negotiate better payer reimbursements or lower costs for certain services. Many independent practices find that they do not have the capital to add EHRs and […]
Discover why online fax is the next step in the evolution of communication. Flexibility and security are just two of the many advantages Sfax has over more traditional communication channels.
Physician-to-Physician Communication With the number of serious medical errors on the rise due to miscommunication among health care providers, it is shocking that there has been little meaningful change in this area in the past decade. There have been many efforts recently that aim to effectively lower medical costs for patients, but few that would […]
ith more health professionals using smartphones and tablets in their work, the security of these devices is of utmost importance in order to prevent data breaches.
As we discovered recently, more healthcare professionals than ever before are turning to smartphones for their day-to-day work.
According to a new HIMSS Analytics report, the exchange of health data in Health Information Organizations (HIOs) is being slowed by the use of paper and traditional fax. Sfax can provide an answer.
According to the study of 1,063 participants, 86% use smartphones, which is up 8% from 78% in 2012. 53% of those studied use tablets at work, compared with 34% in 2012. All participants use laptops or desktop computers, and 47% use all three devices at work.
From small startups to giant corporations, communication is the key to any successful business. Uniting departments and organizations across any distance, fax is a long-standing, reliable method of transferring messages and data. Some may say there is no space for fax in the digital age, but this is far from the truth. Online fax is alive and well, and there are numerous reasons why it is a valuable addition to any company.
As the climate of healthcare changes and the entire system is over-hauled to reduce costs and increase access, the humanity of medicine is at risk. Regulations and new standards, aimed at normalizing care delivery, seems to stifle that which was sacred not too long ago. As we are forced to adapt to keyboards and a […]
Financial institutions constantly deal with a high volume of sensitive information, from individual client accounts to mutual funds, stock brokerage and investment banking. As a result, there are multiple challenges which come with protecting the highly confidential data processed at each level.
With thefts and data compromises happening with alarming regularity around the world, making sure that your data is sent via a secure channel should be your top priority.
As physicians, we know that seconds really do make a difference in patient care, but the legal line can easily be blurred between providing the fastest emergency communication and keeping protected health information secure. There is no question mobile apps can make a difference in helping doctors speed up communication around diagnosis and treatment plans […]
In the age of tablets and smartphones, PCs and laptops are being rapidly replaced in the home as well as in the workplace. More and more companies are making use of the portability and flexibility of tablets for day-to-day work, but is it something that workers really want?
Today, Austin-based SecureCare Technologies, Inc. has announced the release of the new mobile app version of its secure cloud fax service, Sfax. The free app, available on iOS and Android devices, allows its customers to manage their faxes ‘on the go’. Sfax for Mobile allows users to securely send, receive and manage faxes from their […]
As doctors, we are constantly looking for ways to work more efficiently without compromising patient care. One way we do this is to increasingly rely on our mobile devices, but we have to be careful we don’t accidentally violate HIPAA/HITECH privacy and security rules. Here’s a potential trap physicians may fall into. Receiving text messages […]
Manual faxing is fraught with issues and inefficiencies. It lacks in terms of security, with hard copies easily intercepted by third parties, and is costly in terms of employee time and money spent on physical resources.
Whilst businesses across all industries are taking to cloud computing, healthcare providers have been slow to adopt the technology
Physicians have a lot to lose if they don’t take the time to get up to speed on how to comply with the latest HIPAA/HITECH privacy and security rules. Here’s a violation physicians may not even be aware of, but that could cost them. Not reporting a lost or stolen device that contains PHI. Losing […]
The results of our latest customer survey are now in! We’ve been working hard to ensure Sfax is best in class, and our customers confirm that our product is one of their favorite for sharing and accessing faxes securely at any time, wherever they are.
One of the main features of Sfax, and one that we often hear from our customers is an extremely useful tool, is the ability to annotate and digitally sign faxes send it on or back to the sender – without the need to print, sign and the scan the paper document.
Our job as physicians has an infamous reputation for blurring lines between our work and personal lives. This blurred line carries over to patient security and can potentially be a big deal because of HIPAA/HITECH security regulations. Here’s an example of a rule you may not even know you are breaking. Allowing your child to […]
The recent final rule of the HITECH Act outlines that even if the physician is unaware of the violation, they may be fined a civil penalty of $100 – $50,000 per violation. It is time for even the most resistant doctors to pay attention to how they handle protected health information (PHI). Here’s a scenario […]
Switching away from the messy, wasteful practice of manual fax and embracing modern technology will save your business money on energy bills, ink and paper.
Doctors do not plan ahead to violate HIPAA, but in this digital age, they may be doing it because they did not plan ahead. Here is a common way physicians are breaking HIPAA/HITECH privacy and security rules, and may not even know it. Texting PHI to members of your care team. It’s a simple scenario: […]
There is a growing trend in the business world to ‘digitize’ the office space. This is the act of processing data and documents into a digital format so that they can be accessed by computer.
Cloud faxing provides many clear advantages over traditional faxing solutions and email file transfer systems. Manual fax machines are being abandoned as businesses are increasingly turning to cloud faxing for all of their secure data transfer needs.
Since the August 2009 Breach Notification Rule came into existence it has been clear to everyone just how frequently healthcare and patient data is compromised across the nation. Inappropriate use email continues to be a issue.
We’ve rolled out some great new features and tweaked a couple of things. Permissions We know Administrators and IT Managers need to control what users can do – what specific actions they can take. This is especially important with team working and collaboration and for compliance reasons. We have created the ability for Accounts Admins […]
Bloomberg Rankings sorted through U.S. Census data for metropolitan areas to rank those with the greatest population growth, then scored areas on growth in gross domestic product, adjusted for inflation. Combine the two scores and winnow the list to regions with more than 1 million residents, and you have American’s fastest-growing cities. The Austin area […]
A new set of HIPAA patient privacy regulations will impact practices and physicians everywhere with stronger legal scrutiny and higher fines in place. The U.S. Department of Health and Human Services (HHS) has updated the final omnibus to enhance the security of patient privacy established by the Health Insurance Portability and Accountability Act of 1996 […]
We recently expanded our user base at DocbookMD, and found ourselves teaching the basics to hundreds of new doctors and medical society executives around the country. What became quickly apparent was the fact that while DocbookMD is very simple to use, the best features are not always obvious until you have used them once. What […]
Mobile Healthcare, or mHealth, is quickly becoming mainstream in the medical community. Physicians are increasingly reporting that they do not feel comfortable with growing patient workloads in this time of ever-changing healthcare delivery. This shouldn’t come as a surprise as doctors have more consulting physicians to collaborate with, higher complexity of diseases to manage, and […]
G. Bernard Shaw once said, “The single biggest problem in communication is the illusion that it has taken place.” It’s no secret that communication between health care providers is far from where it needs to be. Just to grasp the magnitude – look at the 2009 cross-sectional study of Medicare claims data by Pham et […]
With the number of serious medical errors on the rise due to miscommunication between health care providers, it is shocking that there has been little meaningful change in this area in the past decade. Few changes would lower medical costs and improve health outcomes like opening communication between physicians. The Joint Commission has estimated that […]
This terminology is undergoing a bit of a revamp as the subtleties come into question. Simply put, HIPAA-compliant is an action, and HIPAA-secure is an adjective. Compliance includes active, on-going choices that a physician (or other covered entity) makes in order to keep protected health information (PHI) safe. It is the covered entity’s responsibility to […]
When Engineer Carl Ritter von Ghega began work on the devastatingly steep stretch of track in the Austrian Alps in the mid 1850’s, there was not even a train in existence that could handle such steep terrain – but he knew it would come one day. From a technology standpoint, DocbookMD has taken a similar […]
Hello 2013, good-bye old technology. Will this be the year that the merits of digital technology in medicine are finally realized financially? Not many can predict where healthcare is headed, but it does seem clear that the age of paper and face-to-face meetings are slowly becoming things of the past. Items once indispensible to me […]
With the holiday season upon us, many are thinking of new gadgets as gifts, or for ourselves. The smartphone and tablet market has never been so closely watched as now, and with the competition between Google and Apple products, no one is more interested in the latest trends than those who program for their devices. […]
Mother Theresa once said, “I alone cannot change the world, but I can cast a stone across the waters to create many ripples.” I can’t help but reflect today on the many things to be thankful for in this life – but today I reflect on those who I see making ripples. It is not […]
Sure, we’re late adopters. Most docs would probably be happy to continue to carry the same brick-sized mobile phone, or row of pagers if it meant they could continue to focus on providing the best patient care. Keeping up with the latest in our field, cutting edge research and standards of care generally drives us […]
Well, the election is over – and whether you’re red, blue or green, there’s a lot of work to do, and we physicians need to collaborate on the road ahead. This is true in the medical world now more than ever. The upcoming interim meeting of the American Medical Association will certainly address some of […]
Choosing the right fax service is important and finding time to properly evaluate the options can be difficult. We have webinars to better demonstrate what Sfax has to offer.
Long-term home care technology commentator, Tim Rowan, took Sfax for a test drive and liked what he found.
We love it when other people review and provide feedback about Sfax. John Lynn, HIT Analyst and author of the open forum and for EMR, EHR and HIPAA-related information, EMRandHIPAA.com, has taken a look at Sfax Driver and Sfax Online. John comments: “..we could talk about the reasons that faxes are so effective and successful, […]
In the highly regulated and litigious world in which we live, sending, receiving or managing sensitive documents and data through email or services that use email can be plain negligent. Unfortunately, many healthcare businesses are transporting Protected Health Information (PHI) and Social Security details by email or services that use email every day because they […]
Find out why, in the highly regulated and litigious world, sending, receiving or managing sensitive documents and data through email or services that use of email is plain negligent.