Paubox Weekly: How to use tracking pixels and be HIPAA compliant

Hello world,

Today’s Paubox Weekly is 575 words - a 2 minute read.

Want to get this type of content delivered to your inbox every Friday? Subscribe to Paubox Weekly. 

1. How to use tracking pixels and be HIPAA compliant

While useful for analytics and advertising, tracking pixels potentially compromise PHI security, a clear violation of HIPAA.

Why it matters: A study published in 2023 by Health Affairs reveals that almost 99% of US hospital websites use third-party tracking collecting data that could directly link to PHI without consent.

HIPAA compliance and the use of tracking pixels

Did you know?

You can earn $250 for every organization you send our way. Here's how.

2. Inmediata reaches $1.4 million settlement following HIPAA investigation

Healthcare clearinghouse, Inmediata, was part of a HIPAA investigation beginning in 2019. Now, after facing a multi-state lawsuit, the company has decided to settle the case.

What happened: Due to a website error, data of over 1.5 million individuals was made available online. Patient information could be found through simple Google searches.

Inmediata sent out breach notification letters, but many individuals received letters addressed to other individuals. This resulted in further disclosures of PHI.

The incident cost over $2 million in lawsuits alone

HIPAA compliant online forms

Securely collect information and files from patients. Free with your Paubox Email Suite account. How it works.

3. Blackbaud announces $49.5 million settlement for data breach

Blackbaud agreed to settle a $49.5 million lawsuit brought forth by the attorneys general of 49 states and Washington, DC.

What's new: The settlement is in response to allegations from attorneys general that Blackbaud violated various laws, including consumer protection laws, breach notification laws, and HIPAA.

They also face a lawsuit from the SEC

4. "We're not in a hurry," Google Research Expert discusses responsible use of AI

At HLTH 2023, James Manyika and Erin Brodwin discuss the burgeoning field of AI and how emerging companies can use new technology responsibly.

What they're saying: "We're not in a hurry," Manyaki says. "I think the only race we feel we're in is the race to get it right."

Using AI responsibly

5. iOS 17 update disrupts teletherapy sessions

The latest iOS 17 and macOS Sonoma updates bring FaceTime Reactions - 3D effects, like confetti and balloons triggered by hand gestures.

In the know: While fun in casual conversations, these reactions have inadvertently created awkward or uncomfortable moments in teletherapy sessions.

Do therapy sessions now need a warning dialog?

Community links

• Visiting customers at HLTH 2023: my takeaways. Link
  
• Visiting more customers and making new friends at HLTH23 (pics). Link
  
• Day 1 at SmileCon 2023: Takeaways from the Paubox team. Link
  
• Day 2 at SmileCon 2023: Deepening Connections and Insightful Feedback. Link
  
• Data breach at 23andMe exposes sensitive user information, raises privacy concerns. Link
  
• Are appointment reminder emails HIPAA compliant? Link
  
• Insider threats in healthcare. Link
  
• WHO releases publication outlining considerations for AI in healthcare. Link
  
• HHS OCR unveils telehealth privacy and security resources. Link
  
• HIPAA and the credit card exemption. Link

Good reads from around the web

• Google TAG detects state-backed threat actors exploiting WinRAR flaw. Link
• How much health systems pay for MLS naming rights. Link
• Healthcare AI and HIPAA compliance. Link
• 5 practical ways healthcare companies can mitigate litigation risk. Link
• Former NSA Director: AI is ‘double-edged sword’ for cybersecurity. Link