Healthcare IT Today

New HIPAA Security Rule and Enforcement Coming in 2024

December 22, 2023

The U.S. Department of Health and Human Services (HHS) said it will update the HIPAA Security Rule in 2024 and will ask Congress for new laws and resources to...

Employee Fired for Inappropriately Accessing EHR Records

January 27, 2023

Even an ‘Internal Breach’ is a Breach According to an announcement on its website, Alabama-based DCH Health Systems fired an employee for accessing...

Researchers Say CVS Health Accidentally Exposed More than 1 Billion Records

June 23, 2021

Jeremiah Fowler with the WebsitePlanet research term recently shared that they discovered over 1 billion records from a non-password protected CVS Health...

Curing Common HIPAA & EHR Spelling Headaches

June 18, 2021

(Fun Friday’s HIPAA vs. HIPPA chart reminded me of an oldie-but-goodie article I wrote years ago to help you always spell HIPAA correctly. And I hate it...

New HIPAA Cybersecurity Law Promises Lower Fines and Audit Relief

January 11, 2021

Safe Harbor for Implementing a Government-Recognized Cybersecurity Program On January 5, President Trump signed a new law providing Safe Harbor for HIPAA...

How to Avoid Multi-Million-Dollar HIPAA Phone & Data Penalties

May 20, 2019

2 Comments

Why is There Still So Much Confusion, Denial, and Deception? The Office for Civil Rights just announced a $ 3 million penalty against Touchstone Medical...

Cybersecurity Policies are Finally Put Where They Belong – Last

January 7, 2019

HHS says Security and Compliance Require Actions, then Policies The common-sense, scalable, and actionable cybersecurity guidance recently released by the US...

When Disasters Hit – A Business Continuity Amazon Order List

October 11, 2018

My good friend, Mike Semel from Semel Consulting, has put together an amazing business continuity resource for healthcare organizations. Of course, a lot of...

Healthcare Security Humor – Fun Friday

August 3, 2018

After Mike Semel’s recent post on embarrassment, career suicide, or jail, it may seem a bit ironic to offer some healthcare security humor. That’s...

Embarrassment, Career Suicide, or Jail

July 26, 2018

1 Comment

What You Can Learn from the Russian Army, the US Navy, and a Suspended Nurse The General Counsel at one of our clients is a former district attorney who...

Cookie	Duration	Description
__cfruid	session	This cookie is set by the provider Cloudflare. This cookie is used for load balancing and for identifying trusted web traffic.
_GRECAPTCHA	5 months 27 days	This cookie is set by Google. In addition to certain standard Google cookies, reCAPTCHA sets a necessary cookie (_GRECAPTCHA) when executed for the purpose of providing its risk analysis.
AWSALBCORS	7 days	This cookie is used for load balancing services provded by Amazon inorder to optimize the user experience. Amazon has updated the ALB and CLB so that customers can continue to use the CORS request with stickness.
AWSELB	session	This cookie is associated with Amazon Web Services and is used for managing sticky sessions across production servers.
cf_ob_info		This cookie is set by the provider Cloudflare. The cookie provides informations on HTTP Status Code returned by the origin web server, the Ray ID of the original failed request and the data center serving the traffic.
cf_use_ob		This cookie is set by the provider Cloudflare content delivery network. This cookie is used for determining whether it should continue serving "Always Online" until the cookie expires.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary	1 hour	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non-necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
gdpr_status	6 months 2 days	This cookie is set by the provider Media.net. This cookie is used to check the status whether the user has accepted the cookie consent box. It also helps in not showing the cookie consent box upon re-entry to the website.
JSESSIONID	session	Used by sites written in JSP. General purpose platform session cookies that are used to maintain users' state across page requests.
PHPSESSID	session	This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.
ts	1 year 1 month	This cookie is provided by the PayPal. It is used to support payment service in a website.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie is set by CloudFlare. The cookie is used to support Cloudflare Bot Management.
_alid_	session	This cookie is set by the provider mielevod-vh.akamaihd.net. This cookie is used for making the live streaming of video content more efficient.
akavpau_ppsd	session	This cookie is provided by Paypal. The cookie is used in context with transactions on the website.
bcookie	2 years	This cookie is set by linkedIn. The purpose of the cookie is to enable LinkedIn functionalities on the page.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
language	session	This cookie is used to store the language preference of the user.
lidc	1 day	This cookie is set by LinkedIn and used for routing.
sp_landing	1 day	This cookie is set by the provider Spotify. This cookie is used to implement audio content from spotify on the website. It also helps in collecting information on user interaction with this audio content.
sp_t	1 year	This cookie is set by the provider Spotify. This cookie is used to implement audio content from spotify on the website. It also helps in collecting information on user interaction with this audio content.
v1st	1 year 1 month	This cookie is set by the provider TripAdvisor. This cookie is used to show user reviews, awards and information recieved on the community of TripAdvisor. It helps to collect information about how visitors use the website.

Cookie	Duration	Description
AWSELBCORS	session	This cookie is used for load balancing, inorder to optimize the service. It also stores the information regarding which server cluster is serving the visitor.
dmvk	session	This cookie is set by the provider Dailymotion. This cookie is used for collecting statistical data of the visitor behaviour on the website. It is used for internal analytics.
sid	past	This cookie is very common and is used for session state management.

Cookie	Duration	Description
__gads	1 year 24 days	This cookie is set by Google and stored under the name dounleclick.com. This cookie is used to track how many times users see a particular advert which helps in measuring the success of the campaign and calculate the revenue generated by the campaign. These cookies can only be read from the domain that it is set on so it will not track any data while browsing through another sites.
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag_UA_131168995_1	1 minute	This cookie is set by Google and is used to distinguish users.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
CONSENT	16 years 4 months 2 days 9 hours	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.
UID	2 years	No description available.
vuid	2 years	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.
WMF-Last-Access	1 month 20 hours	This cookie is used to calculate unique devices accessing the website.

Cookie	Duration	Description
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
DSID	1 hour	This cookie is setup by doubleclick.net. This cookie is used by Google to make advertising more engaging to users and are stored under doubleclick.net. It contains an encrypted unique ID.
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
NID	6 months	This cookie is used to a profile based on user's interest and display personalized ads to the users.
OAGEO	session	This cookie is set by the provider OpenX. This cookie is used for advertising campaigns on the website. The cookie helps in avoiding the same ad showing repeatedly.
OAID	1 year	This cookie is set when an AdsWizz website visitor have opted out the collection of information by AdsWizz service or opted to disable the targeted ads by AdsWizz.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.
yt-remote-connected-devices	never	These cookies are set via embedded youtube-videos.
yt-remote-device-id	never	These cookies are set via embedded youtube-videos.
yt.innertube::nextId	never	These cookies are set via embedded youtube-videos.
yt.innertube::requests	never	These cookies are set via embedded youtube-videos.

Mike Semel

New HIPAA Security Rule and Enforcement Coming in 2024

Employee Fired for Inappropriately Accessing EHR Records

Researchers Say CVS Health Accidentally Exposed More than 1 Billion Records

Curing Common HIPAA & EHR Spelling Headaches

New HIPAA Cybersecurity Law Promises Lower Fines and Audit Relief

How to Avoid Multi-Million-Dollar HIPAA Phone & Data Penalties

Cybersecurity Policies are Finally Put Where They Belong – Last

When Disasters Hit – A Business Continuity Amazon Order List

Healthcare Security Humor – Fun Friday

Embarrassment, Career Suicide, or Jail

Are You Investing Enough in IT Security?

Slow Learners Teach Big Lessons – $2 Million State HIPAA Penalty

HIPAA May be the Least of Your Compliance Worries

Business Associates are NOT Responsible for Clients’ HIPAA Compliance, BUT They Still Might Be At-Risk

Don’t Worry About HIPAA – When Your License Is At-Risk!

2.7 Million Reasons Cloud Vendors and Data Centers ARE HIPAA Business Associates

Don’t Blame HIPAA: It Didn’t Require Orlando Regional Medical Center To Call the President

Doing a Proper HIPAA Risk Assessment with Mike Semel

Doing a Proper HIPAA Risk Assessment with Mike Semel

Windows Server 2003 Support Ends July 14, 2015 – No Longer HIPAA Compliant

The Evolving Security and Privacy Discussion

Are Legacy EHR Sytems the HIPAA Ticking Time Bomb?

Firewall & Windows XP HIPAA Penalties

The Just Enough Culture of HIPAA Compliance

Just for You

Healthcare IT Podcasts

Featured Articles

Finding a Partner in Digital Acceleration at ViVE 2023

Leverage Advanced Analytics to Process Petabytes of Streaming Clinical Data at the Edge

Mobile Fax Apps and HIPAA Compliance

How Can Healthy Data Fix Healthcare?

Categories

Popular Articles

Healthcare IT Today Podcast

Follow Us