On April 22, 2024, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services announced final regulatory updates to the Privacy Rule under the Health Insurance Portability and Accountability Act of...more
6/24/2024
/ Attestation Requirements ,
Covered Entities ,
Department of Health and Human Services (HHS) ,
Disclosure ,
Dobbs v. Jackson Women’s Health Organization ,
Final Rules ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
HIPAA Privacy Rule ,
OCR ,
PHI ,
Popular ,
Public Health ,
Regulatory Standards ,
Reproductive Healthcare Issues ,
SCOTUS
After California and Virginia, Colorado recently became the third state to pass a comprehensive consumer data privacy bill. Although this new Colorado Privacy Act (CPA) overlaps with the California and Virginia privacy laws,...more
7/27/2021
/ California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
CDPA ,
Colorado ,
Consumer Privacy Rights ,
Corporate Counsel ,
Data Collection ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Fair Credit Reporting Act (FCRA) ,
FERPA ,
General Data Protection Regulation (GDPR) ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Personal Data ,
State Privacy Laws
Virginia Gov. Ralph Northam recently signed the Virginia Consumer Data Protection Act (VCDPA) into law, making Virginia the second state, following California, to adopt comprehensive consumer data privacy legislation. ...more
Recent regulatory and enforcement developments in the area of access to patient information create significant new risks for radiology providers.
In particular, imaging providers should pay close attention to these...more
3/31/2021
/ 21st Century Cures Act ,
Department of Health and Human Services (HHS) ,
Electronic Protected Health Information (ePHI) ,
Enforcement Actions ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Blocking Rules ,
New Regulations ,
OCR ,
Patients ,
Personal Data ,
Right of Access ,
Sensitive Personal Information
Two major recent regulatory developments highlight the need for health care organizations to focus on compliance concerning requests for access to patient health information.
HIPAA Right of Access Initiative
As most...more
As most are aware, the telehealth industry has experienced a major expansion during the COVID-19 pandemic. The volume of telehealth claim lines in April 2020 alone reportedly increased more than 8,000% versus April of 2019,...more
Earlier this month, the Substance Abuse and Mental Health Services Administration (SAMHSA) within the U.S. Department of Health and Human Services (HHS) issued a final rule implementing updates to 42 C.F.R Part 2 (Part 2),...more
The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services recently released guidance clarifying that, in certain circumstances, providers may, in a HIPAA-compliant manner without obtaining...more
As we begin to grapple with the unprecedented challenges arising out of the COVID-19 outbreak, a question that many employers are being faced with is this – what information can we disclose, and to whom can we disclose it,...more
Since the major HIPAA overhaul implemented in 2013, there have been few changes to HIPAA privacy, security, and breach notification regulations. However, several HIPAA regulatory changes may now be on the way...more
7/16/2018
/ Accounting ,
Advanced Notice of Proposed Rulemaking (ANPRM) ,
Department of Health and Human Services (HHS) ,
Disclosure Requirements ,
Electronic Medical Records ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare Reform ,
HITECH Act ,
Regulatory Agenda ,
Trump Administration
Texting by physicians and other health care providers has long been a hot topic due to the privacy and security considerations involved, although HIPAA and state laws have generally been at the center of this discussion....more
2/5/2018
/ Centers for Medicare & Medicaid Services (CMS) ,
Conditions of Participation (CoP) ,
Data Protection ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Medicaid ,
Medical Records ,
Medicare ,
Patient Privacy Rights ,
Regulatory Standards ,
Text Messages ,
Texting
Recent events highlight the fact that threats to customer and patient data continue to increase. In recent months, government agencies, news outlets, and others have spent considerable time investigating and reporting on...more
Recent settlements and initiatives conducted by the Office for Civil Rights ("OCR") at the U.S. Department of Health and Human Services highlight the continuing need for focus on compliance with the privacy and security...more
Businesses in the State of Tennessee should take note of several significant changes to Tennessee's data breach statute that take effect for data breaches occurring on or after July 1, 2016.
Currently, Tennessee Code...more
Providers participating in the Medicare and Medicaid Electronic Health Record ("EHR") incentive programs should be mindful that failure to comply with the requirements of the Health Insurance Portability and Accountability...more
Under the recently enacted Health Information Technology for Economic and Clinical Health (HITECH) Act, and implementing regulations, the definition of the HIPAA term "Business Associate" has been expanded. A "Business...more
A recent Health Insurance Portability and Accountability Act ("HIPAA") settlement, which is notable as the first HIPAA settlement with a covered entity for failure to have policies and procedures in place to comply with...more