HIPAA business associate PH Tech is facing investigations and class action lawsuits in the wake of a breach affecting 1.75 million Oregon health plan members.
The worst imaginable exposure occurs when cyber attackers are able to steal and publish nude photos of patients seeking medical treatment.
Patients have the right to receive their medical records in a timely manner under the HIPAA Right of Access Rule.
HIPAA regulated entities need policies and procedures that deter insider snooping, like restricting access to patient data and HIPAA training.
The MOVEit data breach is a stark reminder that cybersecurity defense requires vigilance over software updates & patches and third-party vendor risks.
Take care not to violate patient privacy if social media is part of your marketing strategy. HIPAA and medical ethics rules still apply.
Copyright © 2023 ET&C Group LLC.
The HIPAA E-Tool® and Protecting Patient Privacy is Our Job® are registered trademarks of ET&C Group LLCTerms & Conditions | Privacy Policy | Cookies Policy | Privacy Settings
Mailing Address
The HIPAA E-Tool
PO Box 179104
St. Louis, MO 63117-9104
Office
8820 Ladue Road Suite 200
St. Louis, MO 63124
