Compliance & Legal

EHR contract with Epic

UI Health in Chicago EHR project bidding case will now go to the state ethics board for review. Photo via UI Health

By Jessica Davis 04:17 pm April 20, 2018
The board couldn’t rule out conflict of interest in the $62 million contract signed between Epic and the academic medical center to overhaul its legacy EHR and billing systems.
FDA medical device cybersecurity
By Jessica Davis 04:23 pm April 18, 2018
The agency released a five-point plan outlining regulatory changes to bolster medical device safety, including requiring manufacturers ensure devices can be updated and patched.
New Jersey Virtua Medical HIPAA breach

Virtua Memorial Hospital in Mount Holly, New Jersey. Credit: Google Maps

By Jessica Davis 02:28 pm April 09, 2018
The penalty highlights the need for healthcare providers to thoroughly vet third-party vendors to ensure security best practices.
HHS asks court to dismiss Ciox lawsuit
By Jessica Davis 12:25 pm April 09, 2018
The medical records vendor sued the agency in January for ‘absurd’ enforcement -- but HHS claims that CiOX has no constitutional standing for such a case.
Microsoft sues Community Health Systems for alleged copyright infringement
By Jessica Davis 11:21 am April 04, 2018
CHS, already facing financial troubles, has been accused of breaching contractual obligations with the tech giant, by continuing the use of Microsoft products at some of its recently sold hospitals.
NQF weighs in on meaningful measures
By Mike Miliard 01:37 pm March 30, 2018
Measure Applications Partnership wants better alignment and purpose for the myriad quality measures hospitals, practices and LTPAC sites have to report.
NIST framework
By Mike Miliard 09:49 am March 30, 2018
Inside access control of employees a must says health law attorney Barry Herrin.
HHS warns of cyberattacks

The Office of Civil Rights in Washington, D.C. Credit: Google Maps

By Jessica Davis 02:48 pm March 28, 2018
In the wake of an onslaught of cyberattacks, the agency is reminding providers that HIPAA requires organizations to have a plan to keep patient data protected.
OCR investigating Banner Health

Banner Desert Medical Center in Mesa, Arizona. Credit: Google Maps

By Jessica Davis 12:34 pm March 21, 2018
The Arizona health system is cooperating with the investigation but expects to receive negative findings and a potential fine.
HIPAA compliance GDPR privacy law in Europe
By Jessica Davis 09:31 am March 21, 2018
By May 25, U.S. providers caring for EU patients will need to brush up on consent forms, data sharing and privacy monitoring because the General Data Protection Regulation is tougher than HIPAA.

Most Read

The Daily Brief Newsletter