Marti Arvin wrote an article on managing business associate risks that appeared in the March 2018 edition of Compliance Today. Read the article PDF here.
Home
»
Compliance & Regulatory Enforcement
»
Business associates: Have you really integrated them into your risk profile?
Other content in this Stream
Netwalker, the Powerful New Strain of Ransomware Used Against Equinix
Caleb Barlow discusses the recent ransomware attack on Equinix infrastructure disclosed earlier this month. Equinix stated it has been fully contained, with no customers affected and no data loss.
22:56Compliance Regulation Related to Information Blocking - Part One
CTEK & Healthlink Advisors experts discuss the considerations for healthcare providers as it relates to the regulations around information blocking for the upcoming CMS 2020 Interoperability Rule.
22:37Compliance Regulation Related to Interoperability - Part Two
CTEK & Healthlink Advisors experts discuss the considerations for healthcare providers as it relates to the regulations around information blocking for the upcoming CMS 2020 Interoperability Rule.
Moving Forward: Setting the Direction | 2020 Annual Report
Our third annual report, Moving Forward: Setting the Direction, our analysts combed through data of the nearly 300 assessments performed to show the state of healthcare security in 2020.
EHR Vendor Settles HITECH Fraud Case
Marti Arvin offers commentary for this article which focuses on the recent announcement from federal prosecutors who have agreed to pay $500,000 to settle the 2015 HITECH fraud case.
Telehealth & Data Security: Understanding the Risks
The below infographic depicts the results of survey findings and links to additional telehealth pointers for both patients and providers from a survey conducted in June of 2020.
3 Tips Providers Need to Know for Providing Telehealth Care
This infographic describes important telehealth safety tips providers need to consider before offering telehealth services.
7 Questions Patients Need to Ask Before a Telehealth Visit
Our infographic describes important Telehealth safety questions patients need to ask their provider before a telehealth appointment.
Unsecured Database Exposed on Web - Then Deleted
David Finn contributes to this article where he discusses benevolent bots and building security and privacy into the design process for software vendors.
North Carolina health center to pay $25,000 HIPAA fine
Marti Arvin, Executive Advisor at CynergisTek, offered commentary for this article, which discusses the recent HIPAA fine on Agape Health Services, a N.C.-based federally qualified health center.
CCPA Enforcement Begins, but Many Companies Are Unprepared
Marti Arvin discusses California’s newly enforced controversial digital privacy law – despite a call for a delay due to the pandemic and a lack of readiness by many companies.
1:01:48Securing Healthcare Attackers, Defenders, and Data…Oh My!
How are threat actors targeting healthcare providers? Where do healthcare regulations and cybersecurity frameworks intersect and how do they benefit from each other? Why should clinics and hospitals m
Ground telehealth applications in security -- now
David Finn discusses the recent exposure of recorded patient consultations by Babylon Health.
Telehealth After COVID-19: Privacy, Security Considerations
What will happen after July 25th? The Federal government's recent policy changes for facilitating patient care during COVID-19 may have an impact on telehealth restrictions in the future.
Business Associate Incidents Added to Breach Tally
In the latest article by Healthcareinfosecurity.com David Holtzman discusses the major health data breaches that have been added to the federal tally in recent weeks.
Lawsuit Filed Against Accounting Firm in Patient Data Hack
In the latest article by Healthcareinfosecurity.com David Holtzman discusses the class action lawsuit filed against accounting firm BST & Co. CPAs LLC that allegedly exposed patient information.
![Marti Arvin, Adam Greene and Joan Podleski on COVID-19 Disclosure Issues [Podcast]](https://content.cdntwrk.com/mediaproxy?url=https%3A%2F%2Fcontent.cdntwrk.com%2Ffiles%2FaHViPTcyNjQ5JmNtZD1pdGVtZWRpdG9yaW1hZ2UmZmlsZW5hbWU9aXRlbWVkaXRvcmltYWdlXzVlZDkyYTU4ZDNhMjIucG5nJnZlcnNpb249MDAwMCZzaWc9NWI2OTBlZTMyZWM2NzFjMDY1NWYzNDFkMzAxMGZmYTg%25253D&size=1&version=1597264590&sig=ccade87f6c57f1feba097db8837e8241&default=hubs%2Ftilebg-blogs.jpg)
Marti Arvin, Adam Greene and Joan Podleski on COVID-19 Disclosure Issues [Podcast]
Marti Arvin joins The Compliance and Ethics Blog podcast with guests as they discuss questions around the coronavirus pandemic about what is and isn’t permissible.
The CyberWire Daily Podcast - Episode 1085
Cyberwire’s latest podcast features Caleb Barlow as he discusses Alan Brunacini’s concept of an Incident Action Plan.
Enforcement of CCPA Begins July 1st While Regulations Still in the Offing
With the start of enforcement of the California Consumer Privacy Act (CCPA) arriving in a few days, the journey to adoption of the implementing regulations are moving at a snail’s pace.
OCR Warns Hospitals: No News Media in Treatment Areas Without Patient Authorization
The OCR recently issued guidance reminding health care providers that the COVID-19 emergency has not changed the federal health privacy protections.