HHS inspector general blasts CMS over lack of HIPAA enforcement

WASHINGTON, D.C. — The inspector general’s office at the Department of Health and Human Services (HHS) has criticized the Centers for Medicare and Medicaid Services (CMS) for its soft enforcement of the Health Insurance Portability and Accountability Act (HIPAA).

In a 19-page letter addressed to acting CMS administrator Kerry Weems, the inspector general’s audits of hospital security show “numerous, significant vulnerabilities” that put patient data “at high risk.”

According to Modern Healthcare, the report said the CMS has done a good job establishing a mechanism to receive complaints from the public about security issues at healthcare organizations and also has effectively followed up with those organizations to remedy problems mentioned in the complaints. But that method alone was not enough to adequately safeguard patient information.

For a copy of the report, click here.

HHS inspector general blasts CMS over lack of HIPAA enforcement.

Related posts

• Why Pay For Health Insurance When You Can Steal It? (0)
• Why Do Bad Things Happen to PCI-Compliant Companies? (0)
• Virtual Network Segmentation for PCI? (0)
• USAJobs hacking raises further security questions (0)
• Unseen communications violate PCI DSS compliance | OUT-LAW.COM (0)

---

Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically each day to your feed reader. If you don't have a feed reader, you can always have these articles delivered to your email inbox every day. Click here to sign up.