News & Upcoming EventsOctober 2014
Quick Links...

Where to Find CynergisTek!

     Follow us on Twitter         View our profile on LinkedIn        

While at recent industry events, as well as from listening to what is happening in the news, there is a lot of activity going on regarding medical device security, OCR updates on enforcement and the forthcoming audits, modifications to Meaningful Use, and much more. Read this month's e-news to stay informed on some of the hottest topics in the industry and learn more about some of CynergisTek's upcoming events.
Must Know Updates From NIST/OCR Conference

Earlier this month David Holtzman participated in the annual NIST/OCR conference and discussed some key takeaways with Holtzman provided updates on everything from FDA's plans for additional efforts in medical device security, OCR's commentary on enforcement priorities and more audit program details. 

Meaningful Use Hardship Extended!


The Centers for Medicare & Medicaid Services (CMS) will allow hospitals and physicians that are unable to demonstrate meeting Meaningful Use requirements to submit hardship exception applications through November 30, 2014.

It's Time to Get Serious About Healthcare
Data Security

Mac McMillan participated as keynote speaker at the,"Health Information Executive's Guide to Cyber Security: A CHIME LEAD Forum Event in collaboration with iHT2." In his presentation, McMillan highlighted some of the serious cybersecurity incidents that have taken place in 2014 and encouraged all to think about what their organization should be doing to protect their security programs. 



Mobile Health Apps & Wearable Devices


There has been a lot of attention lately regarding how/what HIPAA Rules should apply to mobile health apps and wearable devices, especially as technology giants Apple, Google and Intel are trying to stay ahead of federal regulators. Congress recently reached out HHS for clarification of how HIPAA relates to these apps and devices.


Preparing for MU Audits The Right Way

Meaningful Use audits continue to ramp up and many eligible providers and eligible hospitals need to prepare now. The audits can be time consuming and can cost thousands or even millions of dollars in lost incentive payments. CynergisTek recently provided HealthcareITNews some advice on how to be prepared. 


Join Us for a Webinar on Patient Privacy Optimization


CynergisTek and Iatric Systems are teaming up to offer a free webinar, "How to Optimize Your Privacy Program" on December 10th, at 12 CST. In this webinar, Mac McMillan will share why it is so important to have an effective patient privacy program, provide ways you can alleviate some of the technical and administrative burdens that many providers face and address how to overcome some of the challenges of limited resources. 



Compliance Q&A


In every newsletter we answer some of the toughest compliance questions we receive from our newsletter readers, clients and at association events. This month Mac McMillan addresses a common question regarding Meaningful Use and risk assessments. He is often asked, "My EHR is hosted (or donated) by another facility. What should I expect if audited under Meaningful Use with respect to a risk assessment?"


"Ultimately the host provider is required to demonstrate that a risk analysis was conducted or reviewed of the EHR if requested. Many organizations will provide documentation that you can present as part of your attestation, even though technically they are not required to do so. You are still required to conduct a risk assessment of your own environment and address specifically how you manage access to the EHR, password controls, etc."


Have a tough compliance question? Email us to have your question answered by one of our subject matter experts.