News-to-Use

New HIPAA Rule on Protected Health Information and Reproductive ...

The Department of Health and Human Services (HHS) issued a final rule that impacts employer-sponsored group health plans and their business associates (“Covered ...
READ MORE

CISA’s Recommendations for HR Professionals

The Cybersecurity and Infrastructure Security Agency (CISA) plays an important role in safeguarding the nation's cyber infrastructure. CISA recommends that organizations ...
READ MORE

BAS Ongoing Privacy and Security Training

Benefit Allocation Systems prioritizes data security through its annual privacy and security refresher training for employees. Discover the comprehensive training ...
READ MORE

Phishing Emails

In today's digital age, phishing emails have become a pervasive threat to organizations worldwide, putting sensitive data and company security at risk. HR professionals ...
READ MORE

HHS Settles HIPAA Security Violations with Healthcare Provider ...

The Department of Health and Human Services (HHS) reached a settlement over potential HIPAA Security Rule violations following a ransomware attack on a healthcare ...
READ MORE

Conducting a HIPAA Risk Assessment: Essential Steps for HR ...

Safeguarding health information is not just a best practice—it is a requirement under the Health Insurance Portability and Accountability Act (HIPAA). For HR ...
READ MORE

Importance of Multi-Factor Authentication for Workplace Security

In today’s digital-first environment, safeguarding sensitive company and personal information is top of mind. One of the most effective methods to enhance security ...
READ MORE

HHS Updates HIPAA Breach FAQs

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) recently updated its FAQs on their webpage regarding the cybersecurity incident at Change ...
READ MORE

Updating Compliance: The FTC Enhances Health Breach Notification ...

The Federal Trade Commission (FTC) recently updated its Health Breach Notification Rule, which mandates certain non-HIPAA covered entities to notify individuals, the ...
READ MORE

Creating and Maintaining a Written Information Security Plan (WISP) ...

With the rise of data security incidents, businesses are encouraged to maintain a Written Information Security Plan (WISP). A WISP protects businesses and clients, ...
READ MORE