social.bund.de is one of the many independent Mastodon servers you can use to participate in the fediverse.
Dies ist der Mastodon-Server der Bundesbeauftragten für den Datenschutz und die Informationsfreiheit (BfDI).

Administered by:

Server stats:

98
active users

#compliance

7 posts3 participants0 posts today

DATE: May 16, 2025 at 10:15AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Healthcare Organizations Take 3.7 Months To Announce Ransomware Data Breaches t.co/S28nl5WEqY #hipaa #compliance #ransomware

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

The HIPAA Journal · Healthcare Organizations Take 3.7 Months To Announce Ransomware Data BreachesA recent data analysis by Comparitech has revealed that the average time for a U.S. healthcare organization to report a ransomware attack is 3.7 months, An analysis of the time taken to report a data breach after a ransomware attack is the shortest in the healthcare sector, yet it typically takes 3.7 months for notification letters to be issued, and often much longer.

DATE: May 16, 2025 at 10:15AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Healthcare Organizations Take 3.7 Months To Announce Ransomware Data Breaches t.co/S28nl5WEqY #hipaa #compliance #ransomware

Here are any URLs found in the article text:

t.co/S28nl5WEqY

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

The HIPAA Journal · Healthcare Organizations Take 3.7 Months To Announce Ransomware Data BreachesA recent data analysis by Comparitech has revealed that the average time for a U.S. healthcare organization to report a ransomware attack is 3.7 months, An analysis of the time taken to report a data breach after a ransomware attack is the shortest in the healthcare sector, yet it typically takes 3.7 months for notification letters to be issued, and often much longer.

DATE: May 16, 2025 at 10:09AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Medical Imaging Service Provider Settles HIPAA Risk Analysis & Breach Notification Failures - t.co/xsBJtyTB9B #hipaa #compliance #hipaajournal

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

The HIPAA Journal · Medical Imaging Service Provider Settles HIPAA Risk Analysis & Breach Notification FailuresThe HHS’ Office for Civil Rights has announced its 8th financial penalty under the Trump administration, with the latest financial penalty resolving an Vision Upright MRI in California has agreed to settle alleged violations of the HIPAA Rules with OCR after being found to have never conducted a risk analysis or notified individuals affected by a data breach.

DATE: May 16, 2025 at 10:09AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Medical Imaging Service Provider Settles HIPAA Risk Analysis & Breach Notification Failures - t.co/xsBJtyTB9B #hipaa #compliance #hipaajournal

Here are any URLs found in the article text:

t.co/xsBJtyTB9B

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

The HIPAA Journal · Medical Imaging Service Provider Settles HIPAA Risk Analysis & Breach Notification FailuresThe HHS’ Office for Civil Rights has announced its 8th financial penalty under the Trump administration, with the latest financial penalty resolving an Vision Upright MRI in California has agreed to settle alleged violations of the HIPAA Rules with OCR after being found to have never conducted a risk analysis or notified individuals affected by a data breach.

I have been thinking for a while about the issue of anonymity in Web3 (and, more in general, anonymous transactions). The growing realization of the damage caused by decentralized financial technologies is nagging my cypherpunk self, who has been at war for a lifetime against invasive tracking, manipulative marketing, and surveillance capitalism. I collected my thoughts here: gagliardoni.net/#20250427_priv

Spoiler alert: I'm not endorsing backdoors, but I think some middleground solution must be found.

gagliardoni.netTommaso Gagliardoni's Homepage

DATE: April 24, 2025 at 11:13AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Phishing Attack and Late Breach Notifications Land PIH Health with $600K HIPAA Penalty t.co/CQfk8v4iNo #hipaa #compliance

Here are any URLs found in the article text:

t.co/CQfk8v4iNo

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

DATE: April 24, 2025 at 11:13AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Phishing Attack and Late Breach Notifications Land PIH Health with $600K HIPAA Penalty t.co/CQfk8v4iNo #hipaa #compliance

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

🧱 Scattered Compliance, Siloed Thinking — A GRC Wakeup Call

According to Corporate Compliance Insights, the greatest challenge to effective governance, risk, and compliance (GRC) isn’t complexity — it’s fragmentation.

💡 Key takeaways:

🔹 Organizational silos block visibility and coordination across departments.
🔹 Leadership must model accountability and integrate compliance into strategy.
🔹 Communication—not just policy—is the bridge that makes GRC actionable.
🔹 As AI becomes more embedded in operations, AI governance must be clearly explained to avoid ethical and regulatory missteps.

The most resilient organizations treat communication and collaboration as core to compliance — not afterthoughts.

#Compliance #GRC #Leadership #RiskManagement #AIethics #OrganizationalHealth #leadership

corporatecomplianceinsights.co

Corporate Compliance Insights · Siloed Thinking, Scattered Compliance: The Leadership Challenge in GRCWhen governance, risk and compliance initiatives fail, the culprit is rarely regulatory complexity but rather organizational fragmentation. Anna Muzalska, fintech
Replied in thread

"If you don’t state what you care about, how are random employees supposed to guess whether the things they value about your culture are the result of hard work and careful planning, or simply…emergent properties? Even more importantly, how are they supposed to know if your failures and shortcomings are due to trying but failing or simply not giving a shit?"

charity.wtf/2025/02/10/corpora by Charity Majors @mipsytipsy

charity.wtf · Corporate “DEI” is an imperfect vehicle for deeply meaningful idealsI have not thought or said much about DEI (Diversity, Equity and Inclusion) over the years. Not because I don’t care about the espoused ideals — I suppose I do, rather a lot — but because corporate…

DATE: March 26, 2025 at 12:26PM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

OCR’s Third Phase of HIPAA Compliance Audits Are Underway t.co/7RdwfwmRil #hipaa #compliance

Here are any URLs found in the article text:

t.co/7RdwfwmRil

Articles can be found by scrolling down the page at hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------