July 2018
Stay Current Newsletter
Art1What the Final Rule on Association Health Plans Means for California

Essentially, this ruling will make it easier for small businesses and individuals to "band together" and buy health insurance with fewer regulations. This ruling goes into effect September 1, however it is unknown when plans will actually be operational.

Missed our blog post? Read it here.

art2Question of the Month

Q: Do I need an ID card to seek services?

A: No, you do not. Providers typically prefer to have a copy of your ID card to ensure they have all the information they need to verify your coverage. However, as long as you are able to provide your insurance carrier name and your group number, the provider should be able to verify your benefits as necessary. Many insurance carriers do not issue ID cards any longer, rather providing members the ability to download one from their web portal if they wish to have an ID card.

art3HR Done Right Blog: Time off policies - should you follow the trend?

In a recent study by Mercer, it was discovered that combined paid time off (PTO) policies have skyrocketed to over 63%, up from just 38% in 2010. To remain competitive, many employers are shifting how they structure their traditional sick and vacation policies in favor of a combined PTO policy. Regardless of your time off policy it should be easy to track, compliant and attractive to candidates as well as current employees.  

Click here to read the HR Done Right Blog.

art5Summer's Here and So is Spear Phishing 

Cyberattacks and resulting data breaches often begin with a spear-phishing email. Spear phishing differs from regular email phishing in its use of extensive research to target a specific audience, which allows the spear phisher to pose as a familiar and trusted entity in its email to a mark. Spear phishers seek a company's valuable information--such as credentials providing access to customer lists, trade secrets, and confidential employee information--and some of their methods include: 
  • Directing email recipients to fake (but authentic-looking) websites that ask for information like account numbers, passwords, or other credentials.
  • Inducing recipients to click on links or attachments that download malware onto the recipient's computer. The malware often allows the phisher to steal passwords and sensitive data by, for example, tracking keystrokes.
The IRS offers the following tips to protect against spear phishing:
  1. Educate all employees about phishing in general and spear phishing in particular.
  2. Use strong, unique passwords with a mix of letters, numbers, and special characters. Also remember to use different passwords for each account.
  3. Never take an email from a familiar source at face value, especially if it asks you to open a link or attachment, or includes a threat about a dire consequence that will result if you fail to take action.
  4. If an email contains a link, hover your cursor over the link to see the web address (URL) destination. If it's not a URL you recognize, or if it's an abbreviated URL, don't open it.
  5. Poor grammar and odd wording are warning signs of a spear-phishing email.
  6. Consider calling the sender to confirm the authenticity of an email you're unsure of, but don't use the phone number in the email.
  7. Use security software that updates automatically to help defend against malware, viruses, and known phishing sites. 
Click here for additional information about protecting yourself from spear-phishing attacks.

Article reprinted with permission from HR360.com

ART5Save the Date: Harassment Prevention Training

Mark your calendar! HR Done Right is excited to announce they will be conducting harassment prevention training Wednesday, August 22. Registrations details will be available soon.

See what's happening on our social sites: