fbpx
Snooping and Security Breaches

Security Breaches: Surprising Fact of Employee Snooping

21Feb 2019
By HIPAA Vault

Secure your healthcare information so you’re not at risk for security breaches!

According to a privacy breach survey of healthcare providers – 70% of which admitted to having at least one security breach – 35% attributed the breach to unauthorized access by employees.

Take note of that stat: essentially, the survey found that the most common cause of HIPAA security breaches is actually small-scale snooping by employees.

The results went on to reveal that 27% of breaches occurred when an employee viewed the medical records of friends and family, and 35% when employees checked the medical records of their work…

Read more

DevSecOps Mindset Promotes Better Security

21Feb 2019
By HIPAA Vault

Changing a company’s security culture is hard sometimes. Consider the techy world of applications development, if you will. (Even if this doesn’t apply strictly to you, the lessons are helpful).

Typically, as one network security expert points out, the old ways of bringing usable software to market involved “every man to his island.” You had an IT island, a DevOps island, and last but not least, a Security island.

The Devops island had its goal: do continuous deployment and continuous release of code, with automation being a driving force wherever possible. Sure, you employed a Source Code scanner…

Read more

Podcast – Is GMAIL HIPAA Compliant?

19Feb 2019
By HIPAA Vault

Andrew Kroninger, TOTAL HIPAA’s Director of Customer Success, recently interviewed Gil Vidals, founder and CEO of HIPAA Vault, a HIPAA compliant cloud managing solution. The two discussed Gmail’s potential for HIPAA compliant email messaging. You can listen to this episode of our podcast HIPAA Talk! here or on your mobile device via Apple Podcasts. Or, read our summary:

AK: Can I email PHI?

GV: HIPAA mandates that you protect PHI (Protected Health Information) in transit, in storage, and at rest. There is a common misconception that email is a secure way to send and receive PHI….

Read more

The HIPAA Vault Story

19Feb 2019
By HIPAA Vault

(The following is a transcription of a podcast produced by CloudBerry, where each week Doug Hazelman talks to different managed service providers about their business)

Doug: Hello and welcome to the MSP Voice Webinar series. Today I’m pleased to be joined by Gil Vidals, from HIPAA Vault, and he’ll be talking about their HIPAA compliant cloud. So Gil, why don’t you go ahead and take it away.

Gil: Alright Doug, thanks for inviting me. I’m looking forward to talking about my passion. You’re looking at a picture of a guy (who’s not me – but looks just like…

Read more

HIPAA and HIPPOCRATES

19Feb 2019
By HIPAA Vault

The Department of Justice recently charged a physician for violating HIPAA Rules, after he permitted a sales representative from a major pharmaceuticals company to access the confidential health information of his patients – without their consent.

The motive, as usual, was greed. If particular patients could be targeted for the new drug, the pharmaceutical company as well as the doctor stood to gain.

The result? The pharmaceuticals company pleaded guilty, and was fined $35 million; the doctor also pleaded guilty, and was sentenced to 6 months probation with a fine.

Now, whether the physician should have actually lost his license or…

Read more

When an employee saw an “urgent” email from her boss

19Feb 2019
By HIPAA Vault

…requesting that she purchase $1,000 worth of Google Play gift cards to give to company clients, she wasted no time. “In hindsight, I should have been like, ‘This is weird,’ but your boss asks you to do something and you do it,” said Kari Hornfeldt, a Chicago marketing professional.

When the company credit card didn’t process, Kari purchased the cards using her own debit card, trusting the company would reimburse her. It turns out, the company knew nothing about it.

Kari and her company soon discovered they’d been scammed, by an increasingly common (and surprisingly effective)…

Read more
HIPAA Compliant Health App

Make your Healthcare App HIPAA Compliant

26Jan 2019
By HIPAA Vault

Making your healthcare app HIPAA compliant is only the start. Consider the reality: a 7-year study conducted by researchers from Michigan State and Johns Hopkins University found that approximately 53% of all data breaches reported to the Office for Civil Rights (OCR) were actually the result of internal negligence.

Reasons for these data breaches might include:

  • theft of data by current or former employees
  • poor password policies
  • careless use of laptops or mobile devices
  • stolen hard drives (from the workplace, or employee’s cars or homes) with unencrypted data
  • email phishing scams, etc.

All of which to say that when…

Read more

Examining Your Social Media Policies for HIPAA Compliance

18Jan 2019
By HIPAA Vault

With over 2.8 billion users worldwide – over a third of the world’s population – social media is fast changing the way we communicate. In the U.S. alone, the percentage of adults using some form of social media, such as Facebook, Twitter, YouTube, or LinkedIn, has risen dramatically, from 8% in 2005 to nearly 70% in 2018.

Increasingly, healthcare workers and their patients are among those realizing the benefits: sharing articles on the latest medical research, networking and making referrals, marketing their practices to new and existing clients, and even communicating directly with patients about their care.

Staying Compliant with…

Read more

Reduce your stress at work, improve your performance, and contribute to your (and your company’s) overall health.

18Jan 2019
By HIPAA Vault

Studies show that as little as 10 minutes of exercise during your work day can help you de-stress, re-focus, and even boost your brainpower. It might be a vigorous lunch time walk – or even a quick game of ping-pong like we do at HIPAA Vault. Physical activity helps you unwind, releases endorphins, and even provides some fun in the midst of an often sedentary day filled with mental calculations and multi-tasking.

Here’s some other great ways to reduce your stress:

  • Enjoy some nature (rather than an electronic screen). Getting outside broadens your horizons (literally) so you don’t…

Read more

Will your company be impacted by GDPR?

17Jan 2019
By HIPAA Vault

Four years after its adoption by the European Parliament, the General Data Protection Regulations (GDPR) – a set of compliance requirements designed to give individuals greater control over their personal data in an increasingly digital economy- finally went into effect on May 25, 2018.

GDPR’s overall scope is broad, impacting all personal data (ie, any data that can be used to directly or indirectly identify a living person, including genetic, psychological, cultural, religious and/or socioeconomic).

GDPR’s Global Reach
Among its many reforms, GDPR also seeks to protect sensitive patient data (protected health information, PHI) by ensuring it is collected…

Read more

Our certifications