Tag: compliance

PE firms are rolling up physician practices at record pace. Most have no idea what PHI is hiding in those legacy systems. Here is what to look for—and where.

Deal fell apart over 2.3M customer records in a folder nobody knew existed. SOC 2 passed. Security questionnaire clean. Data discovery scan found $2M in remediation costs. Scan before you sign.

Most breached PHI was in places nobody inventoried—forgotten file servers, legacy backups, shadow IT. HIPAA-covered entities need to scan beyond clinical systems before OCR asks where patient data actually lived.

PHI and PII are not the same. PHI is health data protected by HIPAA. PII is any data that identifies a person. Here's what each covers, which laws apply, and how to stay compliant.

We have a FREE tool that can scan any file you use and instantly flag violations. Find out what sensitive data is lurking in your files before it becomes a problem.

Another MOVEit fallout: Nuance Communications will pay $8.5 million to settle claims from the 2023 MOVEit data breach. Third-party risk is everyone's problem.