On May 6, 2019, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced that Touchstone Medical Imaging (TMI) agreed to pay $3,000,000 to settle alleged HIPAA violations arising out of...more
On April 26, 2019, the U.S. Department of Health and Human Services (“HHS”) published an Enforcement Discretion letter announcing it is meaningfully lowering the cumulative annual civil money penalties (“CMPs”) it will apply...more
Health care providers are heavily reliant on technology in providing clinical services. The findings from a recent research study highlight the significant threat of cyber risks in health care that is in addition to the...more
There were two important HIPAA developments during this past week. First, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) announced that Pagosa Spring Medical Center (“PSMC”), a Colorado...more
On December 4, 2018, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) announced that Advanced Care Hospitalists (ACH) agreed to pay $500,000 to settle alleged HIPAA violations arising out of ACH...more
On November 26, 2018, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that Allergy Associates of Hartford, P.C. (AAH) agreed to pay $125,000 to settle alleged HIPAA violations...more
The U.S. Department of Health and Human Services ("HHS"), Office for Civil Rights ("OCR") announced earlier this month that an HHS administrative law judge ("ALJ") ruled in favor of the OCR on summary judgment and required MD...more
2017 was a year in contrasts for the health care delivery system. Congress and President Trump made several attempts to “repeal and replace” the Affordable Care Act. Controversy about marijuana continued as more states...more
2/14/2018
/ Affordable Care Act ,
Cybersecurity ,
Department of Justice (DOJ) ,
Federal Trade Commission (FTC) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Individual Mandate ,
Marijuana ,
Medical Marijuana ,
Medicare Advantage ,
OCR ,
PHI ,
Popular ,
Telehealth ,
Trump Administration
On February 1, 2018, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that Fresenius Medical Care North America (FMCNA) agreed to pay $3.5 million and enter into a Corrective...more
On December 28, 2017, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that 21st Century Oncology, Inc. (21CO) agreed to pay $2.3 Million in lieu of potential civil money...more
St. Luke’s-Roosevelt Hospital Center, Inc. (SLRHC), a member of the New York-based Mount Sinai Health System, paid $387,000 to the U.S. Department of Health and Human Services (HHS) and entered into a corrective action plan...more
Texas’ Memorial Hermann Health System (MHHS) paid $2.4 million to the U.S. Department of Health and Human Services (HHS) and entered into a corrective action plan (CAP) to resolve allegations related to the impermissible...more
On April 24, 2017, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that CardioNet, Inc. (CNI) agreed to pay $2.5 million and enter into a Corrective Action Plan (CAP) to settle...more
4/28/2017
/ Business Associates ,
Corrective Actions ,
Covered Entities ,
Data Breach ,
Data Protection ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
PHI ,
Popular
On April 20, 2017, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that Children’s Digestive Health (CDH) agreed to pay HHS $31,000 for its failure to have a business associate...more
On April 12, 2017, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that Metro Community Provider Network (MCPN) agreed to pay HHS $400,000 to settle alleged HIPAA Security Rule...more
On February 16, 2017, the U.S. Department for Health and Human Services (“HHS”), Office for Civil Rights (“OCR”) announced that Memorial Healthcare Systems of Florida (“MHS”) agreed to pay $5.5 million and enter into a...more
In one of the last health care related acts of President Obama’s administration, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR), imposed a multimillion-dollar HIPAA civil money penalty (CMP)...more
On November 22, 2016, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced that University of Massachusetts Amherst (UMA) agreed to settle allegations relating to the HIPAA Privacy...more
On October 18, 2016, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced that St. Joseph Health (SJH) agreed to settle allegations relating to the HIPAA Privacy and Security Rules,...more
10/26/2016
/ Business Associates ,
Corrective Actions ,
Covered Entities ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
PHI
On October 7, 2016, the U.S. Department of Health and Human Services (“HHS”), Office for Civil Rights (“OCR”), released a guidance document (the “Guidance”) on the HIPAA-compliant use of cloud computing technologies. The...more
On September 23, 2016, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced that Care New England Health System (CNEHS) agreed to pay $400,000 and enter into a corrective action plan...more
On August, 4, 2016, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) announced that Advocate Health Care Network (Advocate) agreed to pay a settlement amount of $5.55 million and adopt a...more
The U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) announced two settlements of more than $2 million each with respect to alleged violations of the Health Insurance Portability and...more
On July 11, 2016, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) issued guidance (the “Guidance”) for health care entities relating to ransomware and the Health Insurance Portability and...more
On June 30, 2016, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) announced that a business associate providing management services to nursing homes in the Philadelphia, Pa. region agreed to...more