HIPAA Handbooks

  • Privacy and security training for new and seasoned staff
  • 11 staff/setting focus areas
  • Education on protecting PHI
  • New HITECH Act changes
  • Discounts on bulk purchases



  • Role-based training using real-life case scenarios
  • Test-your-knowledge exercises with remediation
  • Post-course test to document staff participation


Other HIPAA Resources

  • Hot-topic audio conferences
  • Books on privacy and security
  • Newsletters
  • e-Newsletter
  • Videos


Archive for HIPAA Violations

A former financial counselor at an Alaska hospital will serve two years in federal prison for HIPAA violations in which she fed PHI on two patients to a drug kingpin who had caused the men to be hospitalized.

Alaska U.S. Attorney Karen Loeffler announced the news of the sentencing June 1, reports KTUU. Stacy Laulu, 33, received two years for each violation, but will serve both terms concurrently. She was convicted in January in the state’s first HIPAA conviction in Alaskan history and one of only a few such cases nationwide.

Read More→

Categories : HIPAA Violations
Comments (0)

rep02If you’re leaving your job for a position at another medical practice, you can just take your patients’ files with you for future use, right? Wrong. It’s a breach of privacy under HIPAA.

A nurse practitioner did just that, however, when she left her job at the University of Rochester Medical Center (URMC) in Rochester, New York, for a position at a local outside practice, Greater Rochester Neurology.

The employee took a list with her containing information on thousands of her patients and then shared that list with her new employer, all without getting permission from the patients, according to a press release issued May 26 by URMC.

Read More→

Drug kingpin Stuart Seugasala was just convicted and sentenced on a string of federal charges that includes HIPAA violations in the course of running a violent drug trafficking ring in Alaska. Authorities said the trafficking ring imported and distributed illicit drugs, perpetrated armed home invasions, drive-by shootings, kidnappings, and sexual assaults.

securitycomputerThe Alaska U.S. Attorney’s Office said it was the state’s first HIPAA conviction and one of only a few such cases nationwide.

Seugasala, 40, was sentenced May 15 to three life terms in prison following his conviction on drug trafficking and kidnapping charges earlier this year, but separate from that sentence was another 20 years for unauthorized access to medical records of two victims he hospitalized in 2013.

Read More→

Comments (0)

justice02_25965964Anthem subscribers are rallying together to file lawsuits in response to the cyberattack on the insurer that exposed the PHI of 80 million current and former Anthem subscribers, according to the Times Union.

Subscribers filed class-action lawsuits against Anthem in Alabama, California, Georgia, and Indiana. Each lawsuit seeks more than $5 million in damages.

Anthem set up a website that includes a letter from President and Chief Executive Officer Joseph R. Swedish and frequently asked questions about the breach.

Click here for more information.

Comments (0)

securityThe PHI of 5,117 patients treated at a physician group affiliated with St. Peter’s Health Partners in Albany, New York, was exposed when a manager’s cellphone was stolen, according to www.bizjournals.com.

The stolen cellphone had access to corporate email systems and PHI for patients of St. Peter’s Medical Associates, P.C., including:

  • Patient names
  • Dates of birth
  • Days, times, and locations of medical appointments
  • General descriptions of reasons for appointments

The PHI was primarily limited to that of patients treated from August to November 2014. Health system officials learned of the cellphone theft November 24, 2014. Home addresses and phone numbers of two patients were listed in an email that could be accessed from the phone. The health system notified all affected patients, according to www.bizjournals.com.

Comments (0)