One health care security consultant says HIPAA compliance is "an ongoing activity that includes assessing risks" and protecting patient data. The president of security consulting firm Apgar and Associates suggests new policies to improve security, including notification of all breaches, financial incentives to protect data, enforcing existing law, requiring vendors to implement security controls before participating in contracting and creating a nationwide body to assist those after medical identity theft.

Full Story:
Healthcare IT News

Related Summaries