Gazelle Consulting

Does HIPAA Apply to Family Members?

In general, HIPAA does not give family members the right to access patient records, even if that family member is paying for healthcare premiums, unless the patient is a minor, a spouse, or has designated them as a personal representative.

However, there are several exceptions and circumstances in which patient data can be shared with family members or other individuals.… Read More

HIPAA Password Requirements Explained

Anyone who has had their accounts compromised understands the importance of secure passwords. But what exactly is considered “secure” in the eyes of HIPAA?

HIPAA Password Requirements and Best Practices

As per usual, the HIPAA law does not provide detailed implementation standards but states that “procedures for creating, changing, and safeguarding passwords” are an addressable safeguard.

Read More

What is a HIPAA Incidental Disclosure?

Typical practices in health care communication, like doctor-to-patient data sharing and in-person or over-the-phone communication to patients by healthcare providers, serve a critical role in ensuring that patients receive effective and timely health care.

Due to the circumstances in which people receive healthcare and treatment from Covered Entities, there is often a possibility of an individual’s health information to be disclosed incidentally.… Read More

HIPAA Security Officer Guide

A HIPAA security officer has a critical role in maintaining HIPAA compliance for your company. But what exactly are they responsible for?

What is a HIPAA Security Officer?

The need for a HIPAA Security Officer resulted from the demands of the HIPAA Security rule and the greater need for information security in modern health care practices..… Read More

HIPAA Privacy Officer Guide

A HIPAA privacy officer, sometimes known as a Chief Privacy Officer (CPO), has a critical role in maintaining HIPAA compliance for your company.

What is a HIPAA Privacy Officer?

A HIPAA privacy officer is responsible for developing, implementing and maintaining privacy policies and procedures regarding the management of protected health information (PHI) in your company.… Read More