HIPAA Expert Witness Experience and Commentary – Mobile Security

September 22nd, 2015

by Michael Arrigo

In my experience serving as HIPAA Expert Witness on HIPAA Privacy and Security advising clients in HIPAA breach litigation cases, one of the most important and challenging mandates for providers is to enforce policies and procedures across multiple technology platforms, devices, and a geographically distributed workforce. Recent HIPAA breaches I have seen were not caused by a certified EHR, but instead caused by non-secure connected servers, mobile devices, and poorly trained people.

Mike Arrigo, Managing Partner & CEO No World Borders, Inc.

Michael Arrigo, Managing Partner  No World Borders, Inc., HIPAA Expert Witness

The HIPAA Privacy Rule provides that a covered entity must have appropriate administrative, physical, and technical safeguards to protect the privacy of protected health information. The HIPAA Security Rule provides a covered entity must ensure the confidentiality, integrity, and availability of all electronic protected health information the covered entity creates, receives, maintains or transmits by complying with various administrative, physical, and technical safeguards.

HIPAA Privacy and HIPAA Security are also important components of OIG Audits of Meaningful Use of Electronic Health Record attestations, as opposed to CMS Meaningful Use audits that focus more on the entire attestation by eligible hospitals (EH) and eligible providers (EPs) or physicians.

Read my article about HIPAA Privacy and HIPAA Security rules, mobile security and BlackBerry’s acquisition of Good Technology here.


EHR and ICD-10 Convergence: Using a Synergistic Approach – Free Webinar September 14, 2014

September 11th, 2015

ICD-10 and Meaningful Use Webinar – Synergies, Workflows Risks and Opportunities


Context and Learning Objectives

  • The recent CMS / AMA announcement on ICD-10 implementation; who is now eligible for a reprieve on their ICD-10 completion date; and what it means for certain providers, health IT companies and payers
  • The 10+ Meaningful Use Stage 2 measures and 20+ EHR clinical processes impacted by ICD-10
  • How structured discrete data for problem lists can support ICD-10
  • The clinician knowledge management crisis – overflows of data instantiate a need for specialized data ontologies and interoperable patient data to guide physician clinical documentation in EHRs to support ICD-10
  • Best practices your organization should be using right now

About the Speaker

Michael Arrigo is Managing Partner  of No World Borders, a healthcare information technology and regulatory consulting group. He has provided expert testimony in cases before the Federal Trade Commission in Washington, D.C., and in State Court in California, Oregon, Washington, Texas, Michigan and Florida. He and his team advise healthcare organizations and investors regarding healthcare-related regulations, including medical records clinical documentation, coding and billing, the International Classification of Diseases version 10 (ICD-10), and the Health Information Technology for Economic and Clinical Health Act (HITECH Act). He also advises healthcare organizations regarding healthcare claims reimbursement and coverage determination provisions of the Patient Protection and Affordable Care Act of 2010. Mr. Arrigo previously worked for Silicon Valley companies including Oracle, HP Symantec and Intel, and served as Senior Vice President of eCommerce for Fidelity and CoreLogic.
Click here to register
© 2015 - No World Borders. All Rights Reserved.Email: