Rural Health
Resources by Topic: Patient privacy
Health Industry Cybersecurity Strategic Plan
Presents a strategic plan for cybersecurity in the health industry, and provides supplementary materials. Identifies industry trends, cybersecurity goals, objectives, and measurable outcomes, and describes the significance of cybersecurity to healthcare delivery organizations. Suggests possibilities for implementation, industrial collaboration, and policy development. Includes discussion of rural health service providers.
Additional links: Full Strategic Plan (2024-2029)
Date: 02/2024
Type: Website
Sponsoring organization: Health Sector Coordinating Council (HSCC) Cybersecurity Working Group
view details
Presents a strategic plan for cybersecurity in the health industry, and provides supplementary materials. Identifies industry trends, cybersecurity goals, objectives, and measurable outcomes, and describes the significance of cybersecurity to healthcare delivery organizations. Suggests possibilities for implementation, industrial collaboration, and policy development. Includes discussion of rural health service providers.
Additional links: Full Strategic Plan (2024-2029)
Date: 02/2024
Type: Website
Sponsoring organization: Health Sector Coordinating Council (HSCC) Cybersecurity Working Group
view details
Cybersecurity: A Path to Increase Rural Health Care Preparedness
Policy position paper discussing the importance of increasing cybersecurity measures across rural healthcare facilities and organizations. Highlights challenges rural providers face in achieving adequate cybersecurity protections, preparedness, and response. Offers federal and state policy recommendations to support and enhance cybersecurity in rural healthcare settings.
Author(s): Michael Hassell, Jenny Niblock
Date: 12/2023
Type: Document
Sponsoring organization: National Rural Health Association
view details
Policy position paper discussing the importance of increasing cybersecurity measures across rural healthcare facilities and organizations. Highlights challenges rural providers face in achieving adequate cybersecurity protections, preparedness, and response. Offers federal and state policy recommendations to support and enhance cybersecurity in rural healthcare settings.
Author(s): Michael Hassell, Jenny Niblock
Date: 12/2023
Type: Document
Sponsoring organization: National Rural Health Association
view details
Cybersecurity Lockdown
Recording of a December 6, 2023, webinar on cybersecurity threats and attacks. Discusses who is after healthcare data, why providers have a professional responsibility to address these threats proactively, and what providers can do today to limit their impact. Part of the Rural Health Clinic Technical Assistance Series.
Additional links: Presentation Slides
Date: 12/2023
Type: Video/Multimedia
Sponsoring organization: National Association of Rural Health Clinics
view details
Recording of a December 6, 2023, webinar on cybersecurity threats and attacks. Discusses who is after healthcare data, why providers have a professional responsibility to address these threats proactively, and what providers can do today to limit their impact. Part of the Rural Health Clinic Technical Assistance Series.
Additional links: Presentation Slides
Date: 12/2023
Type: Video/Multimedia
Sponsoring organization: National Association of Rural Health Clinics
view details
Recovering from a Cybersecurity Attack and Protecting the Future in Small, Rural Health Organizations
Discusses the impact cyber-attacks can have on rural healthcare facilities. Features two Critical Access Hospital leaders describing attacks at their organizations. Shares insights from an information technology compliance expert, including actions organizations can take to protect themselves.
Author(s): Tami Lichtenberg
Citation: Rural Monitor
Date: 10/2023
Type: Document
Sponsoring organization: Rural Health Information Hub
view details
Discusses the impact cyber-attacks can have on rural healthcare facilities. Features two Critical Access Hospital leaders describing attacks at their organizations. Shares insights from an information technology compliance expert, including actions organizations can take to protect themselves.
Author(s): Tami Lichtenberg
Citation: Rural Monitor
Date: 10/2023
Type: Document
Sponsoring organization: Rural Health Information Hub
view details
Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients
Offers cybersecurity guidelines for healthcare organizations to help reduce cybersecurity risks. Outlines the top five cybersecurity threats, and discusses best practices to combat these threats. Technical Volume 1 discusses cybersecurity practices for small healthcare organizations.
Additional links: Technical Volume 1: Cybersecurity Practices for Small Health Care Organizations
Date: 04/2023
Type: Document
Sponsoring organizations: 405(d) Program, U.S. Department of Health and Human Services
view details
Offers cybersecurity guidelines for healthcare organizations to help reduce cybersecurity risks. Outlines the top five cybersecurity threats, and discusses best practices to combat these threats. Technical Volume 1 discusses cybersecurity practices for small healthcare organizations.
Additional links: Technical Volume 1: Cybersecurity Practices for Small Health Care Organizations
Date: 04/2023
Type: Document
Sponsoring organizations: 405(d) Program, U.S. Department of Health and Human Services
view details
Telehealth and the Expiration of the COVID-19 Public Health Emergency, with Kathy Wibberly
An episode of the Exploring Rural Health podcast featuring Kathy Wibberly, Director of the Mid-Atlantic Telehealth Resource Center. Discusses the impact of the COVID-19 Public Health Emergency (PHE) on rural access to telehealth services and adjustments patients and providers can anticipate as the PHE comes to an end May 11, 2023.
Date: 04/2023
Type: Audio
Sponsoring organization: Rural Health Information Hub
view details
An episode of the Exploring Rural Health podcast featuring Kathy Wibberly, Director of the Mid-Atlantic Telehealth Resource Center. Discusses the impact of the COVID-19 Public Health Emergency (PHE) on rural access to telehealth services and adjustments patients and providers can anticipate as the PHE comes to an end May 11, 2023.
Date: 04/2023
Type: Audio
Sponsoring organization: Rural Health Information Hub
view details
In Need of a Checkup: Examining the Cybersecurity Risks to the Healthcare Sector
Recording of a March 16, 2023, U.S. Senate Committee on Homeland Security and Governmental Affairs hearing on cybersecurity threats facing the healthcare sector. Features testimony from Kate Pierce, the former Chief Information Officer and Chief Information Security Officer of an Alabama Critical Access Hospital, who discusses cybersecurity in small and rural hospitals.
Additional links: Kate Piece, Fortified Health Security - Testimony
Date: 03/2023
Type: Video/Multimedia
Sponsoring organization: Senate Committee on Homeland Security and Governmental Affairs
view details
Recording of a March 16, 2023, U.S. Senate Committee on Homeland Security and Governmental Affairs hearing on cybersecurity threats facing the healthcare sector. Features testimony from Kate Pierce, the former Chief Information Officer and Chief Information Security Officer of an Alabama Critical Access Hospital, who discusses cybersecurity in small and rural hospitals.
Additional links: Kate Piece, Fortified Health Security - Testimony
Date: 03/2023
Type: Video/Multimedia
Sponsoring organization: Senate Committee on Homeland Security and Governmental Affairs
view details
Preserve Telehealth Access Act of 2021: Telehealth Recommendations
Offers policy recommendations related to Maryland's Preserve Telehealth Access Act of 2021, including recommendations related to provider options to deliver care via telehealth, audio-visual and audio-only delivery, remote patient monitoring, hospice care services, inpatient care, patient privacy, and reimbursement levels.
Author(s): Randolph S. Sergent, Ben Steffen
Date: 12/2022
Type: Document
Sponsoring organization: Maryland Health Care Commission
view details
Offers policy recommendations related to Maryland's Preserve Telehealth Access Act of 2021, including recommendations related to provider options to deliver care via telehealth, audio-visual and audio-only delivery, remote patient monitoring, hospice care services, inpatient care, patient privacy, and reimbursement levels.
Author(s): Randolph S. Sergent, Ben Steffen
Date: 12/2022
Type: Document
Sponsoring organization: Maryland Health Care Commission
view details
Safety Assurance Factors for EHR Resilience (SAFER) Guides Requirements
Infographic displaying the differences in the Safety Assurance Factors for EHR Resilience (SAFER) Guide requirements for hospitals and Critical Access Hospitals (CAHs) participating in the Medicare Promoting Interoperability Program and eligible clinicians participating in the Merit-based Incentive Payment System (MIPS) Promoting Interoperability performance category for eligible clinicians.
Date: 10/2022
Type: Document
Sponsoring organization: Centers for Medicare and Medicaid Services
view details
Infographic displaying the differences in the Safety Assurance Factors for EHR Resilience (SAFER) Guide requirements for hospitals and Critical Access Hospitals (CAHs) participating in the Medicare Promoting Interoperability Program and eligible clinicians participating in the Merit-based Incentive Payment System (MIPS) Promoting Interoperability performance category for eligible clinicians.
Date: 10/2022
Type: Document
Sponsoring organization: Centers for Medicare and Medicaid Services
view details
Medicare Telehealth: Actions Needed to Strengthen Oversight and Help Providers Educate Patients on Privacy and Security Risks
Analyzes 2019 and 2020 Medicare claims data to explore the utilization of telehealth services before and after the implementation of regulatory flexibilities and waivers in March 2020 in response to the COVID-19 pandemic. Describes efforts taken by the Centers for Medicare & Medicaid Services (CMS) to identify and monitor risks posed by Medicare telehealth waivers, as well as a change made to the enforcement of regulations governing patients' protected health information during the COVID-19 public health emergency. Offers three recommendations to CMS to strengthen oversight and assess the quality of telehealth services and one recommendation regarding assistance to providers to explain the privacy and security risks of telehealth to patients.
Additional links: Full Report
Date: 09/2022
Type: Document
Sponsoring organization: Government Accountability Office
view details
Analyzes 2019 and 2020 Medicare claims data to explore the utilization of telehealth services before and after the implementation of regulatory flexibilities and waivers in March 2020 in response to the COVID-19 pandemic. Describes efforts taken by the Centers for Medicare & Medicaid Services (CMS) to identify and monitor risks posed by Medicare telehealth waivers, as well as a change made to the enforcement of regulations governing patients' protected health information during the COVID-19 public health emergency. Offers three recommendations to CMS to strengthen oversight and assess the quality of telehealth services and one recommendation regarding assistance to providers to explain the privacy and security risks of telehealth to patients.
Additional links: Full Report
Date: 09/2022
Type: Document
Sponsoring organization: Government Accountability Office
view details