Agent/Broker Portal
Forgot your User ID
or Password?
Sign Up Now
Contact Us: 844.4NORCAL

Preventing Employee Error from Causing a HIPAA Data Breach

January 1, 2019

“The Healthcare vertical is rife with Error and Misuse. In fact, it is the only industry vertical that has more internal actors behind breaches than external.”1

Even with this grim realization, there is some good news for healthcare practices. Because more than half of healthcare data breaches are caused by inadvertent actions of employees, there is an opportunity for practices to greatly reduce their risk of attack with employee training and awareness that builds a pervasive “culture of security.”

Learn More »
Filed under: Digital Practice, Patient Privacy, Confidentiality & HIPAA, Cybersecurity, Special Report, Practice Manager, Information Security

Encourage Positive Online Physician Ratings with These Best Practices

September 26, 2018

Patients are turning to sources such as ZocDoc, HealthGrades, Vitals, Yelp and other online physician review sources, and reviews are impacting where patients seek care. A 2016 survey conducted by Software Advice found that 72% percent of respondents used online reviews as a first step in seeking a medical provider. While this percentage may appear shockingly high to some, it accurately reflects our nation’s current consumer landscape. With similar models for selecting restaurants, clothing, cars, and other retail businesses, it was only a matter of time until the healthcare industry followed. Understanding what these online reviews say — and don’t say — can help your practice develop a strategy for improving these reviews and aid you in developing a positive reputation online.

Learn More »
Filed under: Digital Practice, Article, Practice Manager, Physician, Physician Ratings, Reputation Management, Public Relations & Communication

71% of Cybersecurity Incidents in Healthcare Involve Employee Actions

July 30, 2018

“The Healthcare vertical is rife with Error and Misuse. In fact, it is the only industry vertical that has more internal actors behind breaches than external.”1

While large and costly data breaches perpetrated by criminal hackers (such as the Equifax breach in 2017) make for splashy headlines, data breaches in healthcare caused by employee error and misuse are far more common.

Learn More »
Filed under: Digital Practice, Patient Privacy, Confidentiality & HIPAA, Cybersecurity, Article, Practice Manager, Information Security

Misdelivered Email Results in a HIPAA Data Breach

June 14, 2018

A common scenario in email security breaches is seen when a billing service sends a bill to an incorrect email address. In most practice arrangements, a third-party billing company will have signed a business associate agreement. According to HIPAA, business associates must inform covered entities when they discover a security breach; however, HHS gives covered entities and business associates flexibility in defining, in the business associate agreements, how and when a business associate should notify the covered entity of a potential breach.1 Consider the following case. (Please note that the following case focuses on the clinic’s responsibility to analyze the risk and perform the breach notification, even though the breach was caused by a business entity.)

Learn More »
Filed under: Digital Practice, Patient Privacy, Confidentiality & HIPAA, Cybersecurity, Case Study, Practice Manager, Information Security

Case Study Comparison: HIPAA Data Breaches and PHI on Stolen Laptops

June 14, 2018

According to HHS data, more than a third of all data breaches reported through 2017 involved a laptop, desktop, or mobile device.1 Compare Cases One and Two, and consider how better security practices protected the covered entity in Case Two.

Learn More »
Filed under: Digital Practice, Patient Privacy, Confidentiality & HIPAA, Cybersecurity, Case Study, Practice Manager, Information Security
 | 

 Topics 

 Specialties 

Interested in NORCAL Group?

Contact Your Agent/Broker or call 844.4NORCAL today