Privacy & Security Resources

A Case Study of the Family Health Center of Worcester’s Ransomware Incident, February 2024

The use of ransomware — malicious software that restricts access to computer systems with financial demands — has escalated, targeting health centers and putting countless lives at risk. This dire reality came to the forefront during the alarming ransomware attack on the Family Health Center of Worcester, Inc. (FHCW), where the personal health information and care continuity for thousands of patients were compromised. This resource uses FHCW's experience as a case study to demonstrate the...

NTTAP Webinar Series 2023-2024

Join our upcoming webinar as we dive into key strategies for using identity data in population health management. Expert faculty will highlight the importance of gathering data to address health disparities, with a focus on utilizing Electronic Health Records (EHR) for both internal and patient-focused justice, equity, diversity, and inclusion (JEDI) purposes. Participants will gain confidence in advancing health equity with strategies to collect and use demographic data for developing and...

Virtual Learning Collaborative

As health centers engage with more quality programs through payers, funders, and others there is a pressing need for health center staff to have a foundational understanding of clinical quality measures, quality programs, and how these fit together and fit into the patient care provided in health centers. This learning collaborative is appropriate for health center personnel looking for a simple, foundational understanding of the quality measures and related programs. Over the course of...

HITEQ Highlights Webinar

In this HITEQ Highlight, we aim to strengthen Health Centers' capacity to build their cyber-resiliency. We will cover risk management tools, methods for guarding against cybersecurity assaults, operationalizing cybersecurity to mitigate risks, and breach mitigation tactics. Participants will focus on safeguarding data across the entire enterprise and examine approaches to implementing cybersecurity infrastructure through risk management frameworks and strategic risk assessment. This...

HITEQ Highlights Webinar

While there are thousands of consumer health applications (health apps), which run on smartphones, watches, tablets, and other mobile devices, there is currently no central government agency that provides certification or guidance on consumer-based health apps. View this HITEQ Highlights webinar to learn more about a new tool, the Health App Analyzer, designed to assist health care providers, patients, and consumers in determining whether a given consumer health app provides appropriate...
Recent Department of Health and Human Services (HHS) policy is bringing patients unprecedented access to their health information. Join the Office of the National Coordinator for Health Information Technology (ONC) and Centers for Medicare and Medicaid Services (CMS) in September for an event focused on patient access to health data. The day will bring together patients, providers, payers, and health IT developers to discuss how HHS policies are working in practice and how to maximize the...

Virtual Learning Collaborative

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as...

Virtual Learning Collaborative

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as...

Virtual Learning Collaborative

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as...

Virtual Learning Collaborative

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as...

Highlighted Resources & Events

Need Assistance?

Would you like more assistance regarding Privacy & Security strategies or support in using any of the include resource sets?

  Request Support

The Quadruple Aim

Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More

Quick Feedback Request

Acknowledgements

This resource collection was cultivated and developed by the HITEQ team with valuable suggestions and contributions from HITEQ Project collaborators.

Looking for something different or have something you think could assist?

HITEQ works to provide top quality resources, but know your needs can be specific. If you are just not finding the right resource or have a highly explicit need then please use the Request a Resource button below so that we can try to better understand your requirements.

If on the other hand you know of a great resource already or have one that you have developed then please get in touch with us by clicking on the Share a Resource button below. We are always on the hunt for tools that can better server Health Centers.

REQUEST A RESOURCE  SHARE A RESOURCE