(AHLA) Understanding Privacy and Security Regulations in the Exploding Wellness Apps Market
Clearwater Compliance Blog
by Julie Catron
12h ago
Andrew Mahler, Vice President, Consulting Services, Privacy & Compliance, Clearwater, speaks with Sara Shanti, Partner, Sheppard Mullin, about the legal framework surrounding mental health apps and what is currently happening in the industry. They discuss issues related to data protection, transparency, and sharing, along with enforcement and litigation trends. Podcast hosted and originally published by AHLA. The post (AHLA) Understanding Privacy and Security Regulations in the Exploding Wellness Apps Market appeared first on Clearwater ..read more
Visit website
SCCE Compliance Auditing & Monitoring Conference | September 17, 2024
Clearwater Compliance Blog
by Monica Pastor
4d ago
We’re thrilled to share that Melissa Andrews, Principal Consultant on the Clearwater Privacy & Compliance team, has been selected to speak at the SCCE Compliance Auditing & Monitoring Conference! This virtual event, set to take place on September 17, promises insightful discussions and invaluable takeaways. Melissa’s presentation, titled “Auditing & Monitoring: It’s Not Just for Privacy,” will delve into crucial aspects of compliance beyond the realm of privacy. Joining her is Nicole Brown, Privacy Manager with City of Hope, ensuring a dynamic and enriching session. Mark your calen ..read more
Visit website
The 405(d) Advantage: What Healthcare Leaders Should Know | July 18 @ 1:00 CST
Clearwater Compliance Blog
by Julie Catron
4d ago
There’s a treasure trove of free cybersecurity resources available from HHS to healthcare leaders—here’s how to access them and how they can help take the guesswork out of creating a resilient healthcare organization. With so many voices on cyber resiliency—and even more solutions—how can healthcare organizations sift through what’s noise and focus on prioritized practices that will protect their organizations from cyber threats and reduce the risk of impactful ransomware attacks and breaches? The HHS 405(d) Program is a collaborative effort between the Health Sector Coordinating Council and t ..read more
Visit website
What to Expect During an OCR Audit or Investigation and How to Prepare
Clearwater Compliance Blog
by Julie Catron
1w ago
This blog is based on part four of our 5-part webinar series, “HIPAA Audits Are On The Way—Are You Ready?” Access the replay and presentation materials here. As a healthcare-covered entity or business associate, if the unthinkable happens and you’re the victim of a breach or other cyber incident, chances are you expect the Office for Civil Rights to launch an investigation, depending on the size and nature of the event. However, you may not realize that you and any vendors that access personal health information (PHI) can be the subject of a random OCR audit, similar to a formal investiga ..read more
Visit website
Navigating Best Practices for HIPAA, 405(d) and CPGs
Clearwater Compliance Blog
by Julie Catron
2w ago
This blog is based on part five of our 5-part webinar series, “HIPAA Audits Are On The Way—Are You Ready?” Access the replay and presentation materials here. The U.S. Department of Health and Human Services (HHS) recently announced the return of random HIPAA audits, underscoring the criticality healthcare organizations should place on data privacy and security and the need for better adoptions of HIPAA best practices. The audit announcement follows a multi-year period where HHS paused audits after results from previous rounds highlighted compliance gaps among covered entities and business ..read more
Visit website
Mitigating Common Active Directory Certificate Services Attacks For Healthcare Organizations
Clearwater Compliance Blog
by Julie Catron
2w ago
Author: Fabian Crespo Introduction Active Directory Certificate Services (AD CS) is a critical component of the security infrastructure in many healthcare organizations. It provides a robust framework for managing authentication and encryption via digital certificates. The sensitive nature of healthcare data, which includes patient records and confidential medical information, makes it imperative for these organizations to implement stringent security measures around their certificate services. ESC 1 – Misconfigured Certificate Template Description The ESC1 vulnerability allows attackers to ex ..read more
Visit website
Compliance Matters: AI in Privacy and Compliance, Does It Work in Healthcare?
Clearwater Compliance Blog
by Lauren Frickle
3w ago
A newsletter turned blog by Clearwater VP of Privacy and Compliance Services, Andrew Mahler Welcome to Compliance Matters, a series designed to be your go-to source for bringing privacy and compliance insights to light, straight from my desk, Andrew Mahler. In this issue, I’m diving into the depths of Artificial Intelligence (AI) in the realm of healthcare privacy and compliance. A.I AI is everywhere, and healthcare is no exception. Healthcare organizations are leveraging AI in various ways; for example, it’s playing a significant role in diagnosis and treatment recommendations utilizing patie ..read more
Visit website
Compliance Matters: User Access Monitoring, 5 Things You May Not Be Thinking About
Clearwater Compliance Blog
by Lauren Frickle
3w ago
A newsletter turned blog by Clearwater VP of Privacy and Compliance Services, Andrew Mahler Welcome to Compliance Matters, a series that shines a light on important privacy/compliance topics and what’s on my team’s radar. In this issue, let’s dive into five things that may not have crossed your mind when your organization is thinking about effective user access monitoring and auditing. If you like what you read, sign up to receive the Compliance Matters newsletter directly to your inbox whenever I release a new issue! User Access Monitoring I’d like to address a few often-overlooked questions ..read more
Visit website
Healthcare Defenders: Augie D’Agostino | UW Medicine
Clearwater Compliance Blog
by Julie Catron
1M ago
In this episode of Clearwater’s Healthcare Defenders podcast series, Clearwater CEO Steve Cagle talks with Augie D’Agostino, CIO for UW Medicine in Seattle Washington. Augie describes himself as an “unlikely” CISO, telling Steve he meant to go into education after over 20 years in IT and security, but cybersecurity kept “heating up” and drawing him back in. Steve and Augie cover major topics affecting healthcare cybersecurity right now, including AI and sophisticated social engineering tactics. Augie says, “somewhere in the world, people are punching into a job and their job is to attack us. A ..read more
Visit website
AHLA’s Speaking of Health Law: The Patchwork That Is U.S. Health Care Data Privacy
Clearwater Compliance Blog
by Julie Catron
1M ago
Originally published by AHLA Omenka Nwachukwu, Principal Consultant, Clearwater, speaks with Robert Kantrowitz, Partner, Kirkland & Ellis, about the key issues surrounding health care data privacy and the various points of intersection from a regulatory standpoint. They discuss challenges related to inferential data and de-identified data, federal and state privacy laws, the recently proposed American Privacy Rights Act and its implications for the health care sector, risks for health care organizations that share and store data with internationally based partners, and how the Federal Trad ..read more
Visit website

Follow Clearwater Compliance Blog on FeedSpot

Continue with Google
Continue with Apple
OR