Subscription Required

Only paid subscribers* to Report on Patient Privacy can access this Web portal with three years of back issues, searchable article archives and other valuable resources.

Subscribers to Report on Patient Privacy receive

  1. Report on Patient Privacy, AIS’s industry-leading monthly newsletter, a copy of which will be mailed to you and posted — along with searchable archives of past articles and a convenient library with PDFs of back issues — on the subscriber-only website.
  2. Access to the industry’s most exhaustive HIPAA privacy and security website, which features:
    • 31 detailed narrative sections of guidance written by experts on every HIPAA compliance topic from A to Z. These exhaustive treatments are packed with sample forms, policies, procedures, decision trees and other practical tools you can adapt to your privacy and security compliance programs ... and it’s updated regularly.
    • Links to critical government documents required for compliance with privacy and security regulations and other related federal requirements.
    • Special E-Alerts when timely news breaks
    • Searchable archives of the monthly newsletter Report on Patient Privacy.
    • Recent stories of interest and hot topic articles grouped for convenient reading, and
    • Regular postings from your editor.
View a sample and get more information
August 2015

Recent Stories of Interest

From Report on Patient Privacy - Within the next four months, officials with St. Elizabeth’s Medical Center (SEMC) in Brighton, Mass., will be getting to know some members of their workforce perhaps a bit better than they do now. That’s because SEMC’s new (and unusual) settlement agreement with the HHS Office for Civil Rights (OCR) over HIPAA violations calls for them to conduct interviews and surprise site visits as part of a “self-assessment” to see how well employees are complying with its privacy, security and breach policies. Read more

A landmark voluntary settlement agreement between the HHS Office for Civil Rights… Read more

In the last few months, the protected health information (PHI) of a… Read more

No covered entity is an island. Covered entities (CEs) collect and share protected… Read more

From the Editor

Welcome to your Report on Patient Privacy subscriber-only Web page

Be sure to visit often, for PDFs of issues, article archives, narrative sections by privacy and security experts, and more!

Please e-mail me with your comments on the last issue of Report on Patient Privacy, story ideas for future issues, or any other suggestions you have that can make the newsletter more useful for you.

RPP subscribers can now access an extensive report with all the details of the new HIPAA/HITECH regulations, prepared by RPP Editor Francie Fernald. This report summarizes the amendments to the regulatory language and highlights the clarifications that HHS discusses in the preamble to the rule. It has two parts:

  1. Revisions to the breach notification rules, and
  2. Revisions to the HIPAA privacy and security rules and the HHS OIG enforcement rules mandated by the HITECH Act.

Click here to read the report (PDF file).

September 1, 2015
UCLA Reports Another Data Breach

UCLA Health reported yet another data breach when an employee's laptop was stolen out of a car.

September 1, 2015
Mobile Device Use Policy & Procedure

This sample Mobile Device Use Policy and Procedure was provided to RPP subscribers by Chris Apgar, president of Apgar & Associates, LLC, in Portland, Ore. For more information, please contact Apgar at

Click here to access the policy.

August 31, 2015
UCLA Claims Data Breach Victim's Depression Result of Childbirth

UCLA cross-examined a woman suing the health system for allegedly allowing her ex-boyfriend to access her medical records, saying her depression was actually a result of childbirth. The case was filed in 2013, and has been overshadowed by the cyberattack that compromised 4.5 million UCLA records earlier this summer.

It's quick and easy to sign up for FREE access to!

Why do I need to register?