Compliance and Security

After a brief decline in healthcare breaches, 2023 saw a 45% increase in reported breaches of 500 or more healthcare records. * In an era where a single cybersecurity breach can compromise thousands of sensitive patient records, the imperative for robust digital defenses for PHI protection in behavioral health has never been more critical. This […]

The people of Xpio Health stand ready to help the people who help people. In the complex and demanding field of healthcare, time is of the essence. Every decision carries weight. The professionals leading this charge need solutions that speak directly to the heart of the matter. This is where Xpio Health steps in. EHRs […]

It’s a well-known fact: Security and Usability are sworn enemies. When we make our computers more secure, we make computer users more miserable. Right? Not necessarily. Let’s review the most recent guidance from the National Institute of Standards and Technology (NIST) on the topic of passwords. (Spoiler alert: Their new guidance is totally user-friendly.)  But […]

As a behavioral healthcare organization, it is crucial to ensure your organization is compliant with Medicaid regulations and contracts, HIPAA and, in some cases, for federally funded organizations, CFR 42 Part 2 regulations. One of the best ways to do this is through security risk assessments. These assessments are designed to identify vulnerabilities in an […]

FRISCO, Texas, December 20, 2022– HITRUST, the information risk management, standards, and certification body, will release HITRUST CSF version 11 in January 2023 to improve mitigations against evolving cyber threats, broaden the coverage of authoritative sources, and streamline the journey to higher levels of assurance. “There is no question that frameworks need to stay relevant […]

When you’re taking the first steps in your compliance journey, the to-do list is long, complex and often confusing. Once you’ve decided it’s time to make progress toward HIPAA compliance, where do you start? Start with the big stuff, and use it to frame all the work that comes afterward. If your organization’s security profile […]

Most healthcare organizations realize that they need to follow HIPAA guidelines to protect their patient data. But what exactly does a competent cybersecurity stance look like in healthcare circa 2022? It’s a question raised by a recent lawsuit filed in the State of California by plaintiff Vickey Angulo against defendant SuperCare Health, Inc. The Class […]

To create a culture of compliance in your healthcare organization, start with an effective compliance program. This crucial step enables your company to identify and remediate potential vulnerabilities, promote quality care and reduce instances of fraud and abuse. These seven elements are the foundation for a robust compliance program. Documented policies, procedures and standards of […]

Healthcare organizations face constant regulatory pressure at the federal and state levels. The Health Insurance Portability and Accountability Act’s (HIPAA) rules relating to safeguarding protected health information (PHI) have a significant bearing on the ways organizations collect, store, and transmit their patients’ medical data. Failure to comply with these regulations can have a considerable impact […]