5 Things Practices Need To Do In The New Year: #4

#4) Minimize Workstation Security Risks. Record movement of data and hardware systems. Document all portable storage and end points. Review what’s in the cloud, do you know? Document retired equipment. Review and or update Proper disposal of electronic systems and documents. Update passwords and review how interoffice electronic information is transmitted. Review employee accountability and sanction policy.

Allscripts Breach…Nothing to see here

“We are investigating a ransomware incident that has impacted a limited number of our applications. We are working diligently to restore these systems, and most importantly, to ensure our clients’ data is protected.  Although our investigation is ongoing, there is currently no evidence that any data has been removed from our systems.  We regret any inconvenience caused by this temporary outage.”

5 Things Practices Need To Do In The New Year #2

2.) Business Associates, Vendor Contracts & compliance with HIPAA. Have you assessed your vendor or contractor’s HIPAA security? The regulations require you to do due diligence on your business associates. Have you checked out their HIPAA compliance? Changes made with the HIPAA Omnibus bill makes you responsible for any breaches your Business Associates may have. Checking their compliance is prudent.