Subscription Required

Only paid subscribers* to Report on Patient Privacy can access this Web portal with three years of back issues, searchable article archives and other valuable resources.

Subscribers to Report on Patient Privacy receive

  1. Report on Patient Privacy, AIS’s industry-leading monthly newsletter, a copy of which will be mailed to you and posted — along with searchable archives of past articles and a convenient library with PDFs of back issues — on the subscriber-only website.
  2. Access to the industry’s most exhaustive HIPAA privacy and security website, which features:
    • 31 detailed narrative sections of guidance written by experts on every HIPAA compliance topic from A to Z. These exhaustive treatments are packed with sample forms, policies, procedures, decision trees and other practical tools you can adapt to your privacy and security compliance programs ... and it’s updated regularly.
    • Links to critical government documents required for compliance with privacy and security regulations and other related federal requirements.
    • Special E-Alerts when timely news breaks
    • Searchable archives of the monthly newsletter Report on Patient Privacy.
    • Recent stories of interest and hot topic articles grouped for convenient reading, and
    • Regular postings from your editor.
View a sample and get more information
May 2016

Recent Stories

From Report on Patient Privacy - It isn’t often that the HHS Office for Civil Rights (OCR) establishes new restrictions and requirements for all covered entities (CEs) when it forges settlement agreements with ones it feels have violated HIPAA. But that’s what happened last month when OCR announced what was already a landmark settlement for $2.2 million with New York-Presbyterian Hospital (NYP) over the “unauthorized” filming of a reality TV series and issued an accompanying FAQ on “media access to PHI [protected health information].” Read more

A 21-physician orthopedic surgery practice in Raleigh, N.C., which traces its roots… Read more

Ladies and gentlemen, start your engines. Phase II of the long-promised compliance… Read more

Just days after a worker admitted to losing an unencrypted laptop in… Read more

From the Editor

Welcome to your Report on Patient Privacy subscriber-only Web page

Be sure to visit often, for PDFs of issues, article archives, narrative sections by privacy and security experts, and more!

Please e-mail me with your comments on the last issue of Report on Patient Privacy, story ideas for future issues, or any other suggestions you have that can make the newsletter more useful for you.

Mobile Device Use Policy & Procedure

This sample Mobile Device Use Policy and Procedure was provided to RPP subscribers by Chris Apgar, president of Apgar & Associates, LLC, in Portland, Ore. For more information, please contact Apgar at

Click here to access the policy.

May 24, 2016
OCR Clarifies Flat Rate for Patient PHI Access Is Option, Not Cap

OCR issued clarification that a flat rate of $6.50 for PHI access is an option, not a cap. The guidance means to solve the confusion surrounding the agency's previous guidance in February.

May 16, 2016
Insurers Petition for Dismissal from MIE Data Breach

Two insurers are suing to be released from the massive Medical Informatics Engineering data breach that compromised nearly four million records. (PACER login required)

May 12, 2016
Ponemon: 89% of Health Care Organizations Experienced Data Breach in 2015

Nearly 90% of health care organizations experienced a data breach last year, according to a new report from the Ponemon Institute.

It's quick and easy to sign up for FREE access to!

Why do I need to register?