Awareness : Newsletter Articles

“Store it on the Cloud”: What You Need to Know About Cloud-Based File Solutions

We are all familiar with this phrase but what exactly is the “cloud”? “Cloud” is a buzzword used to describe a network of servers with different functions housed in difference places throughout the world.

Published in the February 2018 Newsletter

The Cost of a Data Breach – Anthem Pays $115 Million to Settle

Anthem Inc, the largest health insurance company in the nation, has agreed to settle litigation in what is said to be the largest settlement ever for a data breach.

Published in the February 2018 Newsletter

Ransomware: What You Need to Know

Cybercrime continues to generate huge profits for criminals so it’s no secret that hackers are getting more sophisticated with their attacks. Ransomware is a malicious piece of software designed to block access to a computer system until payment is received.

Published in the February 2018 Newsletter

How can I access my medical records?

The Electronic Health Record (EHR) has proven to provide more efficient access to patient information thus streamlining workflows and positively impacting patient care. The University provides employees with access to the EHR as a means to carry out the normal functions of their job.

Published in the February 2018 Newsletter

Massachusetts Physician Criminally Convicted of HIPAA Violation

On April 30, 2018, a physician in Springfield, Massachusetts was convicted of a criminal HIPAA violation and obstructing a criminal health care investigation by the Department of Justice (DOJ). The DOJ was investigating the pharmaceutical company Warner Chilcott for suspected healthcare fraud related to illegal marketing practices and for providing payments to physicians in return for higher prescription rates.

Published in the May 2018 Newsletter

Text Messaging and PHI

Text messaging has become a major part of how we communicate. Texting is an essential and valuable means of communication, particularly among healthcare team members. One of the many benefits of messaging over mobile phone apps is that they facilitate rapid dissemination and interaction. But this ease of dissemination can cause real problems for physicians and hospitals if the information is disclosed improperly. The Centers for Medicare & Medicaid Services (CMS) and the Joint Commission take the position that texting of orders is prohibited.

Published in the May 2018 Newsletter

General Data Protection Regulation (GDPR)

You may have noticed an influx of emails regarding privacy policies and terms of service updates. Companies everywhere are rushing to update their policies and be in compliant with the new General Data Protection Regulation (GDPR) regulation. The GDPR is a new, European data privacy regulation that goes into effect May 25, 2018 and will be enforced internationally.

Published in the May 2018 Newsletter

Industry Representatives in Clinical Areas: What you need to know

At UHealth, vendors and industry representatives play an important role in patient care, education and research. From the purchasing of devices to implementation in operating rooms, medical faculty and staff often interact with vendors and industry representatives at various levels. These interactions support UHealth but must be properly managed to maintain patient safety and the integrity of the Health System.

Published in the May 2018 Newsletter

Alert: Scary Pop-up Messages on your PC. Call UM Information Technology Immediately!

Imagine you are browsing the internet when all of the sudden a window pops up with an alarming message: “You’re machine is being compromised!” or “Your machine is engaged in illegal activity!” These windows are an attempt by cyber criminals to induce panic and steal your information. Find out how to avoid these cybercrimes and protect yourself.

Published in the January 2017 Newsletter

Viewing Medical Records of Family Members and Friends

System access is a privilege. As a University employee, you receive a Confidentiality and Acceptable Use Agreement and a HIPAA and Computer Usage Form.

Published in the January 2017 Newsletter

Vendors & Privacy: What you need to know

Covered entities are required to enter into a contract with the business associate under the HIPAA regulation to ensure that they will appropriately safeguard protected health information.

Published in the January 2017 Newsletter

FairWarning Update

Reviews of user access logs are required by the HIPAA regulations to protect the privacy of patient information and to detect any unauthorized access, use, or disclosure.

Published in the January 2017 Newsletter

Live Training Sessions

The Office of HIPAA Privacy & Security continues to provide live Privacy and Security training sessions for University faculty and staff.

Published in the January 2017 Newsletter

Data Broker Program

The Office of HIPAA Privacy and Security, in collaboration with the IRB, CTSI, and UHealth, has established a “data broker” program.

Published in the January 2017 Newsletter

HIPAA Security Walkthroughs

The Office of HIPAA Privacy and Security conducts random unannounced walkthroughs of the various sites of service of the University of Miami Health System.

Published in the January 2017 Newsletter

Equifax Data Breach – One of the Most Costly in History

In late 2017, Equifax, one of the largest credit reporting agencies in the U.S., reported a massive data breach. On May 7, 2018, Equifax executives provided a statement to the Securities and Exchange Commission (SEC) that detailed the extent of consumer data that had been exposed. When all is said and done, this breach may cost Equifax upwards of $600 million, making it one of the most costly breaches in history.

Published in the May 2018 Newsletter

Kudos Corner: Walkthroughs

The Office of Privacy and Data Security conducts random unannounced walkthroughs of various UHealth sites in order to review practices that safeguard protected health information (PHI). The Privacy Office would like to congratulate the following sites for having no current privacy deficiencies in 2018.

Published in the May 2018 Newsletter