HIPAA Incident Response and Reporting

Healthcare organizations must take extra special care of protected health information (PHI). And part of the HIPAA security rule is a group of rules regarding how to respond to a security incident and how to go about reporting that incident depending on the severity. Make sure your organization understands the following policies and has them […]

Workshop event hosted by Kalibr

I will be speaking at an upcoming workshop hosted by Kalibr.   Kalibr is a financial services group aimed specifically at physicians and dentists.   If you are a physician or dentist, the event is free to attend and dinner will be provided.   If you are interested in attending, please RSVP to: JohnMcCadden@TheNautilusGroup.com   The […]

Business Associate Agreements Between Covered Entities

During our mock HIPAA audit process, we always verify Business Associate Agreements (BAAs) for our clients who are either Covered Entities (CEs) or Business Associates (BAs). In the process of deciding which BAAs are required, we are often asked about what agreement needs to be in place between two CEs who are working together. For instance, […]