ANX Corporate Blog: Posts tagged as privacy

Showing 1 through 5 of 7 total posts

Jul 28th 2011, 15:49

HITECH Privacy and Security Regulations Update

Posted by Jason Luke
While the Health Information Technology for Economic and Clinical Health Act (HITECH) of 2009 is over two years old, most people do not realize that many of its requirements are not fully in place yet, specifically the data security and privacy requirements.
Originally, many of HITECH's requirements around privacy and security were supposed to be effective on February 17, 2010. HHS has stated that the expected date of compliance and enforcement of these new requirements, except for the data breach rules, will be delayed until a period after the issuance of the final rules, which are not out yet. Recently, the HHS announced that the final rules implementing HITECH's changes to privacy, security, and data breach notification will be issued together sometime this year,

Comment BubbleComments (0)

Jul 28th 2011, 15:48

HITECH Accounting of Disclosures Rule

Posted by Jason Luke
The HITECH act Sec 13405(c) establishes a new right for patients to receive an accounting of who accessed their PHI.
HHS released a Notice of Proposed Rulemaking (NPRM) relating to this new right that expands on the text of the law and has significant impact to covered entities and business associates.
The new proposal creates the right for a patient to obtain a report of all uses and disclosures of their PHI. Since the HIPAA Security Rule requires audit logging, there is a presumption that this data is already collected. There is substantial disagreement as to whether the Security Rule actually requires all the logging that would be necessary to meet this new reporting requirement, and it is doubtful that most companies could easily accommodate such a request. Essentially, this

Comment BubbleComments (0)

Nov 4th 2010, 08:22

Google Buzz: I totally called that!

Posted by Barry Chapman
HA! Remember when I said that Google Buzz posed a serious privacy flaw? Well, on Tuesday I received an email from Google personally! (Along with several million other users):

Google rarely contacts Gmail [or any] users via email, but we are making an exception to let you know that we've reached a settlement in a lawsuit regarding Google Buzz (http://buzz.google.com), a service we launched within Gmail in February of this year.Shortly after its launch, we heard from a number of people who were concerned about privacy. In addition, we were sued by a group of Buzz users and recently reached a settlement in this case.The settlement acknowledges that we quickly changed the service to address users' concerns. In addition, Google has committed $8.5 million to an independent

Comment BubbleComments (1)

Jun 23rd 2010, 13:23

Don't let your information get CAUGHT!

Posted by Kim Francisco
Over the past decade, a number of standards, laws and regulations have emerged that require organizations to provide strong security and privacy guarantees. The end result is high expectations when it comes to cyber security awareness and training, both of employees and customers. Take a look at this Anti-Phishing game. For those unfamiliar with the term, a phishing attack occurs when bait is used to “catch” financial information and passwords. This game brings awareness to the scam, while providing key warning signs of phishing scams. When a user falls for a simulated attack and clicks on the URL, PhishGuru takes advantage of the “teachable moment” in the form of a cartoon that offers steps to avoid falling for these

Comment BubbleComments (0)

Jun 7th 2010, 11:35

True life tale of Corporate Identity Theft - It could happen to you!

Posted by Barry Chapman
Identity theft is a sore subject to those it has happened to. For most of us, we either fear it; or we think it will not happen to us. This is an all too true recount of a local business owner who discovered that her company website had been hacked. A day by day timeline based on a blog authored by Linda W. Fitzgerald is included here, told as the events materialized.
Days One & Two: I used to think that the phrase "cold sweat" was just an expression. But I was wrong, as I discovered yesterday when I sat at my desk, reading an email that a media buyer had forwarded to me. It was supposedly from someone who wanted to purchase advertising on her company's website.The cold sweat started when I read the signature at the bottom:Anna MillerPurchasing

Comment BubbleComments (0)