Subscription Required

Only paid subscribers* to Report on Patient Privacy can access this Web portal with three years of back issues, searchable article archives and other valuable resources.

Subscribers to Report on Patient Privacy receive

  1. Report on Patient Privacy, AIS’s industry-leading monthly newsletter, a copy of which will be mailed to you and posted — along with searchable archives of past articles and a convenient library with PDFs of back issues — on the subscriber-only website.
  2. Access to the industry’s most exhaustive HIPAA privacy and security website, which features:
    • 31 detailed narrative sections of guidance written by experts on every HIPAA compliance topic from A to Z. These exhaustive treatments are packed with sample forms, policies, procedures, decision trees and other practical tools you can adapt to your privacy and security compliance programs ... and it’s updated regularly.
    • Links to critical government documents required for compliance with privacy and security regulations and other related federal requirements.
    • Special E-Alerts when timely news breaks
    • Searchable archives of the monthly newsletter Report on Patient Privacy.
    • Recent stories of interest and hot topic articles grouped for convenient reading, and
    • Regular postings from your editor.
View a sample and get more information
November 2015

Recent Stories

From Report on Patient Privacy - The HHS Office for Civil Rights (OCR) has recently encountered “serious” problems with HIPAA covered entities (CEs) that failed to have required agreements with their business associates (BAs), according to OCR Director Jocelyn Samuels. In a wide-ranging talk at the recent Healthcare Enforcement Compliance Institute sponsored by the Health Care Compliance Association in Washington, D.C., Samuels also repeated promises that OCR would publish the protocol it plans to use to audit CEs and BAs prior to the start of the program. Read more

Fresh from brokering a $750,000 settlement agreement resolving alleged HIPAA violations, an… Read more

The HHS Office for Civil Rights (OCR) is investigating whether a Texas… Read more

Just a few months after he was on the job as the… Read more

From the Editor

Welcome to your Report on Patient Privacy subscriber-only Web page

Be sure to visit often, for PDFs of issues, article archives, narrative sections by privacy and security experts, and more!

Please e-mail me with your comments on the last issue of Report on Patient Privacy, story ideas for future issues, or any other suggestions you have that can make the newsletter more useful for you.

Mobile Device Use Policy & Procedure

This sample Mobile Device Use Policy and Procedure was provided to RPP subscribers by Chris Apgar, president of Apgar & Associates, LLC, in Portland, Ore. For more information, please contact Apgar at

Click here to access the policy.

November 30, 2015
Lahey Hospital Settles HIPAA Dispute for $850K

Lahey Hospital will pay HHS OCR $850,000 to settle potential HIPAA violations over a stolen laptop.

November 24, 2015
CSO Mag Honors Horizon BCBSNJ for Security Policy

Horizon Blue Cross Blue Shield of New Jersey received an award from CSO Magazine for its security posture.

November 13, 2015
Verizon: 90% of Industries Globally Experienced PHI Breach

A new report from Verizon says that 90% of industries in 25 countries have experienced a data breach involving protected health information.

It's quick and easy to sign up for FREE access to!

Why do I need to register?