Data Privacy at Risk with Health and Wellness Apps
Though you may think health data is always protected, commercial health apps aren’t governed by health privacy regulations can legally collect, share, and sell that data.
Articles Published by Robert Godard
HITRUST v11: Path to Certification Is Now 45% Faster
Out with ‘CSF’ and in with a whole new set of assessment options. Learn what is coming from HITRUST in 2022.
Interoperability & Compliance: Are They Pulling Healthcare in Different Directions?
The challenge for healthcare today is to find the right balance between compliance and interoperability,
New Social Engineering Attack Simulates Healthcare Software
How a hacker group simulated healthcare software to scam patients into divulging personal information.
Is Facebook to Blame for a Massive HIPAA Violation?
33 of the top 100 hospitals used the Meta Pixel tracking tool which collected PII and health data of patients from their websites and sent it the social media company.
Why Organizational Readiness Assessments are Important
What is an organizational readiness assessment? An organizational readiness assessment is an official measurement of the preparedness of your company to undergo a major change or take on a significant new project. You don’t want to jump into a big change or project without knowing if your company has the resources to accomplish it effectively. …
Why Organizational Readiness Assessments are Important Read More »
HITRUST Supports the TEFCA Program and QHIN Compliance
The HITRUST r2 is the only assessment OKed to show compliance with TEFCA security requirements and achieve QHIN cybersecurity certification.
HITRUST® Scope: Factors to Determine HITRUST Engagement
The HITRUST CSF® is a risk- and compliance-based controls framework which helps organizations to validate the privacy and security of their information systems. As an organization prepares for HITRUST CSF assessments, it must outline the scope of engagement. Determining the scope makes it possible to efficiently evaluate the right data and systems during the given …
HITRUST® Scope: Factors to Determine HITRUST Engagement Read More »
Overview of the HITRUST Quality Assurance Review Process
The HITRUST® Quality Assurance Review is the fourth phase of the journey towards certification. During this phase, the HITRUST Assurance and Compliance teams will both check the validated assessment and determine whether the organization has met the requirements to achieve certification. In this in-depth series of articles about the process to achieve HITRUST CSF Certification, …
Overview of the HITRUST Quality Assurance Review Process Read More »
Why Healthcare Security Is A Must
In recent years, hackers have been profiting from private healthcare data, and these types of security incidences show no signs of stopping anytime soon. With significant healthcare breaches like those that affected Molina Healthcare, which impacted 4.8 million patients, and the hundreds of thousands of children’s health records that were compromised from pediatricians’ offices, it …
HIPAA-Compliant Telehealth: Avoiding HIPAA Violations During A Pandemic
Ensuring patients get the medical attention they need, while limiting interactions and travel in order to slow the spread of COVID-19, telehealth has rapidly expanded in 2020. As many offices made the shift to WFH setups and remote working, health care professionals have been encouraged to practice virtual medicine whenever possible. Yet, the recent reliance …
HIPAA-Compliant Telehealth: Avoiding HIPAA Violations During A Pandemic Read More »
HITRUST Shared Responsibility™ Program: Understanding CSP Security Control Coverage
From storing customer data, deploying business-related apps, or hosting computer system infrastructures, cloud service demands are on the rise for business owners. Having the right cloud service provider allows you to keep your operations running. Yet you also understand that by using the cloud to gather, store and transmit data, you’ll need the appropriate security …
HITRUST Shared Responsibility™ Program: Understanding CSP Security Control Coverage Read More »
