|
|
|
|
Monthly NewsLetter
Issue: April 2011
|
|
|
|
| About | Welcome to the monthly edition of our Compliance, Security and GRC Newsletter. This is informational news comprising the latest on compliance related topics and other IT Security & Governance updates that impact our clients, friends and other interested parties.
Please feel free to submit suggestions for topics or provide an article that you would like to share with other newsletter recipients for future editions, by contacting us at contact@controlcase.com.
|
|
 |
|
|
|
Upcoming Events-Conferences
|
ControlCase is proud to be a sponsor of the following events to benefit our clients and prospective partners in IT security and managed compliance. Please join us if your schedule permits: ControlCase Global IT GRC Conference in Kuala Lumpur, Malaysia, May 20 & 21, 2011 Visa's International Security Summit in Jakarta, Indonesia, May 22-24, 2011 Visa's International Security Summit in Dubai, UAE, June 14-16, 2011 Gartner's Security & Risk Management Summit, Maryland, USA, June 20-23, 2011 |
HIPAA Security Requirements for BPOs
| It is April 2011, US Department of Health and Human Services (HHS) is expected to release the final version of the HIPAA security and privacy rules based on changes from the HITECH Act . For organizations that serve the US healthcare industry, the changes are quite significant. However, there are inexpensive solutions available to easily assist third party service providers to comply with the regulations. Click here for the full article.
|
|
Guidance from PCI Council on Recorded Phone Calls | | The proliferation of card data capture on interactive voice response (IVR) systems and the accessibility of voice-to-text conversion capabilties put audio voice recording (AVR) systems within consideration during PCI scoping activities. The PCI Council has recently releases supplimental guidance regarding risks and controls that should be evaluated for these systems/functions. Click here for the full commentary and links to the article.
|
| Recently in the News.... | The following articles highlight accomplishments, challenges and issues that affect our industry:
HHS Puts Industry On Notice: OCR Is Serious About HIPAA Enforcement
HHS has begun to send a resounding message to entities bound by HIPAA. The message is that HIPAA must be taken seriously. HIPAA applies to healthcare providers, hospitals, laboratories, and service providers like Business Process Outsourcers (BPO) that process Personal Health Information (PHI). Fines for non-compliance are increasing in frequency and amount.
Medical identity theft average cost $20,663 to resolve
It is estimated that nearly 1.5 million Americans are victims of medical identity theft, up slightly from last year, according to this comprehensive study. The average cost to resolve a case of medical identity theft stands at $20,663, up ...
Massachusetts General Hospital Settles Potential HIPAA Violations
The General Hospital Corporation and Massachusetts General Physicians Organization Inc. (Mass General) has agreed to pay the U.S. government $1,000,000 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule, the U.S. Department ...
Dont view HIPAA fines as cost a of doing business FierceCIO If anyone doubted that there is a cost to ignoring privacy regulations, $5.3 million in penalties doled out last week for violations of the Health Insurance Portability and Accountability Act (HIPAA) should put such doubt to rest. Not only is ...
Click here for additional articles............ |
|
|
Please let us know any suggestions you may have. Also, please feel free to forward this to other people who would find this newsletter useful.
Sincerely,
ControlCase Team
|
|
|
