by Liathana Dalton | Apr 23, 2026 | Clinician Resources, Podcasts
In this episode, we share concrete steps to take if you’ve discovered staff members using non-approved AI platforms in your practice.
We discuss:
The misconceptions around what constitutes PHI (and why information used to write a progress note absolutely is PHI)
Why this is a reportable HIPAA breach
Why reporting a HIPAA breach is nowhere near as scary or impactful as you may fear
The difference between a large breach and a small breach, and reporting deadlines for each
Client notification deadlines for breaches
How state law can impact or add to reporting deadlines
Steps to take after discovering non-compliant AI use in your practice
What to investigate, how to document, how to mitigate, how to notify clients, and when to consult an attorney
by Liathana Dalton | Jan 22, 2026 | Articles, Clinician Resources
HIPAA Security Rule updates are moving forward — but slowly, deliberately, and with far less disruption for mental health practices than much of the current chatter suggests. This article breaks down what’s actually happening, why it matters, and how to stay grounded and well-positioned without panic or performative compliance.
by Liathana Dalton | Sep 4, 2025 | Clinician Resources, Podcasts
In this episode of Practice Tech, we discuss:
what’s included in the Part 2 Final Rule and why it’s necessary
How to evaluate if you’re subject to Part 2 rules
What compliance looks like under the new Part 2 rules
Redisclosure under Part 2
Steps to take ahead of the February 2026 deadline for enforcement
by Liathana Dalton | May 23, 2024 | Clinician Resources, HIPAA and Security for Clinicians
by Liathana Dalton | Apr 4, 2024 | Clinician Resources, Podcasts
We discuss the different categories of goals that are outlined; being proactive so your practice is ready when changes come; the essential goals HHS has outlined and what they mean; the encouraged goals HHS has outlined and what they mean; why these goals make sense; and how the PCT Way can help you meet these cybersecurity goals.
by Liathana Dalton | Mar 25, 2024 | Clinician Resources, Podcasts
we share ways to be proactive in light of the news that random HIPAA audits are returning.
We discuss why there’s still no HIPAA police; the function of these random audits; where the gaps in compliance have been historically; what auditors will likely be looking for; the importance of risk analyses, risk mitigation plans, and policies & procedures; how many HIPAA covered entities were audited the last time the program was active; and PCT’s resources to help you get started with formal compliance in a shame-free way.
by Liathana Dalton | Mar 25, 2024 | Clinician Resources, Podcasts
We discuss why smart notebooks are popular; how smart notebooks work and why they’re in HIPAA’s scope; risk exposure; device security and hardening; communicating to clinicians that these devices are not HIPAA compatible; ways to support documentation processes that are HIPAA compatible; and what to do if you find out a clinician has been using a smart notebook.
by Liathana Dalton | Mar 11, 2024 | Clinician Resources, Podcasts
we discuss the recent Change Healthcare cyber attack and its impact for group practices.
We cover what we know and what we don’t know yet; resources to help you take practical steps; how many people are impacted by this breach; the ongoing investigations; ransomware attacks; who is liable for this incident; maintaining operational continuity; and the importance of being proactive in your security practices.
by Liathana Dalton | Mar 11, 2024 | Clinician Resources, Podcasts
we summarize what group practice owners should know about the Office of Civil Rights Annual Reports to Congress and explain how understanding them can inform risk management.
We discuss the compliance report from the Office of Civil Rights (OCR); how complaints filed were resolved; compliance reviews vs. audits; reframing the (very common) fear of HIPAA complaints; the unsecured PHI report from the OCR; risk management for avoiding large breaches; the importance of reporting breaches; and the primary sources of breaches and ways to minimize them.
by Liathana Dalton | Mar 11, 2024 | Clinician Resources, Podcasts
we’re exploring what group practice owners should know about cross-jurisdictional practice in the age of teletherapy.
We discuss the shifting landscape of cross-jurisdictional practice; different licensure compacts to be aware of; applying for privileges to practice under licensure compacts; telehealth training requirements; service and payment parity; payment parity advocacy; states that restrict teletherapy based on provider location; temporary practice provisions; and our CE training that dives deeper into this topic.
