IT and Business Insights for SMB Solution Providers

Still Ignoring HIPAA? How about a $200,000 fine and being banned for life?

My friend Mike Semel is the premier authority on compliance issues in the U.S. He just posted this alarming article on the EMR (electronic medical records) and HIPAA web site.

https://www.emrandhipaa.com/mike/2018/11/15/a-hipaa-life-sentence-and-so-many-lessons/

I'll let you read the original article rather than reprint the whole thing here. But please heed the lessons.

Doctors who think they are exempt from HIPAA are fooling themselves.

Medical data companies who think they are exempt from HIPAA are fooling themselves. And criminally liable.

Technology consultants who ignore HIPAA are fighting with fire. Signing Business Associate Agreements are just the start. You need a real plan for compliance, and you need to document both remediation and ongoing compliance.

In this incident Mike discusses here, a medical transcription company breached the medical records of over 1,650. Their customer, Virtua Health, paid a $ 418,000 settlement for violations of both HIPAA and the New Jersey Consumer Fraud Act.

. . . and Tushar Mathur, owner of the medical transcription company, was fined $200,000 for HIPAA violations and consumer fraud - and agreed to a permanent ban on managing or owning a business in New Jersey.

I'm sure that's not something they expected!

Remember that local, state, and federal agencies can all enforce HIPAA compliance. They're taking this seriously whether you are or not.

While Mike's article is focused on buyers of consulting, the lessons are important for you as well. In many ways, it amounts to the ultimate "best practice" list for technology consultants. Check it out.

- - - - -

Mike Semel is the President and Chief Security Officer of Semel Consulting, focused on HIPAA and other compliance requirements; cyber security; and Business Continuity planning. He is a Certified Business Continuity Professional through the Disaster Recovery Institute, a Certified HIPAA Professional, Certified Security Compliance Specialist, and Certified Health IT Specialist.

Mike is also a forum leader inside the Small Biz Thoughts Community.

:-)

Tags: 

About the Author

Karl W. Palachuk, is a technology consultant, author, speaker, trainer, and coach. He is the author of fifteen books. He has built several successful businesses, including two managed services companies. His books include Managed Services in a Month and The Network Documentation Workbook. Karl is a frequent trainer and speaker in the SMB Community. His popular blog can be found at SmallBizThoughts.com. He has more than twenty years experience as an I.T. professional and serves on advisory panels for several hardware and software companies.

ChannelPro SMB Magazine
SUBSCRIBE FREE!

Get an edge on the competition

With each issue packed full of powerful news, reviews, analysis, and advice targeting IT channel professionals, ChannelPro-SMB will help you cultivate your SMB customers and run your business more profitably.