Alisa Chestler

Alisa Chestler

Baker Donelson

Contact
View Bio
RSS

Latest Posts › Electronic Protected Health Information (ePHI)

Share:

Insider Threats Are Just as Dangerous as Ransomware – Lessons from the Latest OCR HIPAA Settlement

What's New? On May 28, 2025, the U.S. Department of Health and Human Services' Office for Civil Rights (OCR) announced an $800,000 settlement with a large Florida-based health care provider over potential violations of the...more

6/5/2025  /  Data Breach , Electronic Medical Records , Electronic Protected Health Information (ePHI) , Enforcement Actions , Health Care Providers , HIPAA Security Rule , HIPAA Violations , OCR , PHI , Ransomware , Risk Management , Settlement

Proposed HIPAA Security Rule Updates

The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) issued a Notice of Proposed Rulemaking (NPRM) on December 27, 2024, to update the Health Insurance Portability and Accountability Act...more

1/13/2025  /  Compliance , Cybersecurity , Data Privacy , Data Security , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Health Insurance Portability and Accountability Act (HIPAA) , NIST , OCR , Risk Management

The Office for Civil Rights Recently Settled Two Ransomware Related Investigations

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently settled two ransomware cases with covered entities. These cases signal the government's growing concern with health care...more

10/11/2024  /  Corrective Action Plans (CAPs) , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Enforcement Actions , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Violations , OCR , Popular , Ransomware , Risk Assessment , Settlement

OCR Enforcement Action Likely: Reminder of Steps to Take Now

Are you a health care provider, business associate, or other entity subject to the requirements of the Health Insurance Portability and Accountability Act (HIPAA) regarding the use and disclosure of protected health...more

10/3/2023  /  Cybersecurity , Electronic Protected Health Information (ePHI) , Enforcement Actions , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Hospitals , Mobile Apps , OCR , PHI

CMS and ONC Publish Final Interoperability and Information Blocking Rules

On March 9, 2020, the U.S. Department of Health and Human Services (HHS) finalized two sets of regulations that are intended to increase patients' access to health data. As explained by HHS Secretary Alex M. Azar, "These...more

3/10/2020  /  Blocking Statutes , Centers for Medicare & Medicaid Services (CMS) , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Final Rules , Health Care Providers , Health IT , New Rules , ONC , Patient Access

Changes to the Security Risk Assessment (SRA) Tool Require Attention

The HHS Office of the National Coordinator for Health Information Technology (ONC) and the HHS Office for Civil Rights (OCR) released an updated Security Risk Assessment (SRA) Tool this week. All covered entities and business...more

10/19/2018  /  Business Associates , Covered Entities , Cybersecurity , Data Breach , Department of Health and Human Services (HHS) , Duty to Update , Electronic Protected Health Information (ePHI) , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , OCR , ONC , Popular , Risk Mitigation , Security Risk Assessments
6 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide