Report on Patient Privacy

View Sample (PDF)

Highlights on this Page

Publication Details

Subscriptions include print and electronic issues

  • Frequency: monthly (12 issues/year)
  • Pages: 12
  • Format: Print and PDF versions
  • ISSN: 1539-6487
  • Pub Code: HIPAA-11WEB

3 Easy Ways to Order

  1. Secure Shopping Cart
  2. Call 800-521-4323
  3. Print a form to fax or mail

Report on Patient Privacy

The Health Care Compliance Association (HCCA) has acquired Report on Patient Privacy from Atlantic Information Services, Inc.

Theresa Defino and her editorial team still write the newsletter, which now also benefits from the wide range of compliance resources and professional contacts available through HCCA.

Please call (888) 580-8373 to order or renew a subscription. Visit HCCA’s website at

Place your order through our secure shopping cart

12 issues
24 issues

Practical News and Strategies for Complying With HIPAA

A variety of factors now conspire to make HIPAA compliance a game that is increasingly more difficult to win:

  • Hackers worldwide — attracted by the enhanced value of personal health information — are increasingly targeting the networks of health systems, hospitals and insurers. (They need to “beat the system” just once, while covered entities must keep them out 100% of the time.)
  • Social media and the flood of mobile devices in the workplace increase exponentially the risks that PHI will be mishandled by physicians or other health care workers.
  • In addition to bad publicity that accompanies the misuse or loss of PHI, the proliferation of class action lawsuits is becoming an expensive new problem for covered entities.
  • Recently revised regulations change the rules for business associates, subcontractors, breach notification, marketing, sale of PHI, fundraising, right to request restrictions, right to access, research authorization, privacy notices and more.
  • HHS’s Office for Civil Rights (and state attorneys general) are flexing their HIPAA muscles with greater authority (and increased fines and penalties) under the HITECH ACT.

With Report on Patient Privacy, each month you’ll read the details of strategies other privacy/security officers are employing to:

  • Monitor the compliance of their business associates and subcontractors,
  • Understand and deal with the new risks of cloud computing,
  • Learn the ins and outs of breach insurance ... and what it costs,
  • Enhance the protection of PHI wherever it resides ... whether in wireless heart pumps, imaging technology, insulin pumps, photocopiers or fax machines,
  • Train employees to resist the temptation to access the PHI of celebrities, friends or ex-family members ... and make sure you are alerted immediately when human nature wins out.

This valuable two-part subscription service includes:

  1. Report on Patient Privacy, AIS’s industry-leading monthly newsletter, a copy of which will be mailed to you and posted — along with searchable archives of past articles and a convenient library with PDFs of back issues — on the subscriber-only website. Check out a sample issue of the industry-leading Report on Patient Privacy.
  2. Access to the industry’s most exhaustive HIPAA privacy and security website, which features:
    • 32 detailed narrative sections of guidance written by experts on every HIPAA compliance topic from A to Z (see listing below). These exhaustive treatments are packed with sample forms, policies, procedures, decision trees and other practical tools you can adapt to your privacy and security compliance programs ... and it’s updated regularly.
    • Links to critical government documents required for compliance with privacy and security regulations and other related federal requirements.
    • Searchable archives of the monthly newsletter Report on Patient Privacy.
    • Recent stories of interest and hot topic articles grouped for convenient reading, and
    • Regular postings from your editor.

HIPAA compliance continues to be an enormous challenge for every health care compliance offer … and a subscription to Report on Patient Privacy will be your roadmap to compliance.

Subscribers Receive Continuing Education Credits

You can earn CEUs from the Compliance Certification Board (CCB) of the Health Care Compliance Association (HCCA) to help maintain any of the seven available compliance and ethics professional designations you may have.

Subscribers to Report on Patient Privacy are eligible to receive one (1) CCB Continuing Education Unit (CEU) per issue, up to the maximum of 50% of the continuing education requirement. Please submit one sheet per five issues of Report on Patient Privacy with your CCB renewal application. For more information, contact CCB at 888-580-8373 or



  1. General Privacy Requirements
    by AIS Editorial Staff
  2. Preemption of State Law 
    by Cynthia F. Reaves, Esq., Linda S. Ross, Esq., and Michael J. Friedman, Esq., Honigman Miller Schwartz and Cohn LLP
  3. Getting Organized for Compliance
    by Michael D. Bell, Esq., Mintz Levin Cohn Ferris Glovsky & Popeo, P.C.
  4. Gap Analysis and Project Planning
    by Christopher E. Coleman, MPH, Vice President, Kristy L. Kuhn, MPA, Associate Consultant, Strategic Management Systems, Inc.
  5. Completing a Risk Assessment
    by Cornelia M. Dorfschmid, Ph.D., Strategic Management Systems, Inc.
  6. Patients' Rights
    by Brian Gradle, Esq., Hogan & Hartson LLP
  7. Use and Disclosure of PHI
    by Brian Gradle, Esq., Hogan & Hartson LLP
  8. PHI and Research
    by Diane M. L. Lee, Esq., Davis Wright Tremaine LLP
  9. Safeguarding PHI
    by AIS Editorial Staff
  10. Employee Education and Training
    by Geralyn Kidera, J.D., Vice President, Mark Pastin, Ph.D., President, Council of Ethical Organizations
  11. Marketing and Fundraising
    by Erin L. Darling, Esq., Mintz Levin Cohn Ferris Glovsky & Popeo, P.C. and Eric Tower, Esq., Advocate Health Care
  12. Recordkeeping and Reporting
    by Donald E. Koenig, Jr., Esq., Catholic Healthcare Partners
  13. Privacy Audits
    by Christine Jensen, HIPAA Project Manager, Denver Health
  14. Implications for Employers
    by Katharina E. Babich, Esq., Sonnenschein Nath & Rosenthal LLP


  1. Overview of the Security Rule
    by AIS Editorial Staff
  2. General Framework
    by AIS Editorial Staff
  3. Security and Privacy
    by Kristy Kuhn and Nisha Shajahan, Strategic Management Systems, Inc.
  4. Security Management
    by Royden R. Crookshanks and Donald M. Jacobs, Inteck, Inc.
  5. Risk Analysis and Management
    by Maureen H. Beekman, Six Point Solutions, LLC
  6. Contingency Planning
    by Maureen H. Beekman, Six Point Solutions, LLC
  7. Contingency Planning, Business Continuity and Disaster Recovery
    by Joseph Arnett, Business Continuity Taxation Professionals, Inc. and Russ Arnett, Taxation Professionals, Inc.
  8. Workforce, Physicians and Contractors
    by Richard Friedland, Friedland Management Solutions, Inc.
  9. Training and Education
    by Joseph Gifford, MD, Regence BlueShield
  10. Standards for Physical Safeguards
    by Marc R. Holland, System Research Services
  11. Standards for Technical Safeguards
    by Peter Caplan, MediSecurity
  12. Security Auditing and Audit Controls
    by Tony T. Schumaker, Riskology, Inc.
  13. Data Security Audits
    by Chris Apgar, Apgar & Associates LLC
  14. Electronic Signatures
    by Jay Elder, Interlink

Privacy and Security

  1. Selecting and Implementing EHRs/PHRs
    by Chris Apgar, Apgar & Associates LLC
  2. Breach Notification Requirements
    by AIS Editorial Staff
  3. Business Associates
    by Reece Hirsch, Esq., Morgan, Lewis & Bockius LLP
  4. OCR HIPAA Enforcement
    by AIS Editorial Staff

Written By

Report on Patient Privacy is written by an editorial team led by Theresa Defino. The narrative sections on the website were written by attorneys, consultants and other experts in HIPAA compliance (see table of contents for individual Privacy and Security section authors).

Written For

Privacy officers, compliance officers, medical records directors, CEOs, CFOs and other top managers at:

  • Hospitals
  • Billing companies
  • Managed care and insurance companies
  • Medical group practices
  • Ancillary provider groups
  • Pharmaceutical companies
  • E-health companies

Shipping Information

Electronic (PDF) versions of the newsletter are available, on the newsletter’s subscriber-only Web page, on the day of publication. Recipients should whitelist to ensure delivery of the e-mail notification of new issues. Print newsletters are mailed 1st class through the U.S. Postal Service. You should receive your first issue within 5-7 business days of your order. A one-time $12 shipping and handling charge will be applied to your order.

View Sample (PDF)

Report on Patient Privacy

Place your order through our secure shopping cart

12 issues
24 issues