Share on Twitter Share by Email Share Back to top Digital health companies increasingly rely on AI-powered messaging platforms, chatbots, and virtual assistants to engage patients through text and voice. However, a June 2025...more
AI scribes are quickly becoming the digital sidekick of modern health care. They promise to reduce clinician burnout, streamline documentation, and improve the patient experience. But as health care providers and digital...more
6/10/2025
/ Artificial Intelligence ,
Compliance ,
Data Privacy ,
Data Security ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Machine Learning ,
PHI ,
Popular ,
Risk Management
While most state data breach notification statutes contain similar components, there are important differences, meaning a one-size-fits-all approach to notification will not suffice. What’s more, as data breaches continue to...more
6/10/2025
/ Compliance ,
Corporate Counsel ,
Data Breach ,
Data Privacy ,
Disclosure Requirements ,
Personal Information ,
Personally Identifiable Information ,
Privacy Laws ,
Regulatory Requirements ,
Reporting Requirements ,
State Privacy Laws
Artificial intelligence (AI) is widely transforming digital health, including by automating certain patient communications. However, as health care companies consider deploying AI-driven chatbots, texting platforms, and...more
5/29/2025
/ Artificial Intelligence ,
ATDS ,
Automation Systems ,
Compliance ,
Consent ,
Digital Health ,
Facebook Inc v Duguid ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Regulatory Requirements ,
Risk Assessment ,
SCOTUS ,
TCPA
Artificial intelligence (AI) is rapidly reshaping the digital health sector, driving advances in patient engagement, diagnostics, and operational efficiency. However, for Privacy Officers, AI’s integration into digital health...more
5/9/2025
/ Artificial Intelligence ,
Bias ,
Compliance ,
Data Privacy ,
Data Security ,
Digital Health ,
Health Insurance Portability and Accountability Act (HIPAA) ,
PHI ,
Privacy Laws ,
Regulatory Requirements ,
Risk Management
Editor’s Note: PYA and Foley & Lardner hosted the 7th Annual “Let’s Talk Compliance” two-day virtual conference on January 23 and 24, 2025. Panelists included Foley attorneys and PYA subject matter experts. The event was...more
3/5/2025
/ Compliance ,
Cybersecurity ,
Data Privacy ,
Department of Government Efficiency (DOGE) ,
Department of Health and Human Services (HHS) ,
Fraud ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Medicaid ,
Medicare ,
OIG ,
Risk Assessment ,
Third-Party
The New York Health Information Privacy Act (NYHIPA), if enacted, could create a chilling effect on patient access and engagement to readily available digital health care services relied upon by New Yorkers. Digital health...more
1/24/2025
/ Compliance ,
Data Privacy ,
Digital Health ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Mental Health ,
New Legislation ,
New York ,
Patient Privacy Rights ,
Privacy Laws ,
Regulatory Requirements ,
State Privacy Laws
The amendments to the HIPAA Privacy Rule designed to protect reproductive health care information (Amendments) are under legal challenge as the compliance date quickly approaches.
As discussed in more detail in our...more
12/20/2024
/ Administrative Procedure Act ,
Compliance ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
Dobbs v. Jackson Women’s Health Organization ,
Enforcement ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Privacy Rule ,
Medical Records ,
New Amendments ,
Privacy Laws ,
Reproductive Healthcare Issues ,
SCOTUS
Recognizing the increasing number of successful cyberattacks targeting health care organizations and their valuable patient data, the Office of the Inspector General (OIG) is calling for enhancements to the HIPAA audit...more
12/10/2024
/ Audits ,
Breach Notification Rule ,
Compliance ,
Cyber Attacks ,
Cybersecurity ,
Department of Justice (DOJ) ,
Enforcement ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Security Rule ,
Noncompliance ,
OCR ,
OIG ,
PHI ,
Vulnerability Assessments
In an important development for HIPAA-regulated entities looking for practical assistance in understanding, implementing, and enhancing compliance with the HIPAA Security Rule, the National Institute of Standards and...more
Editor’s Note: PYA and Foley & Lardner hosted the 6th Annual “Let’s Talk Compliance” two-day Virtual Conference on January 18 and 19, 2024. Panelists included Foley & Lardner attorneys and PYA experts. The event was hosted by...more
Session #1: State of the Healthcare Industry Effective Compliance Plans and Enforcement Trends -
In their discussion of compliance program effectiveness and enforcement, attorneys Kolarik and Waltz and Ms. Sumner...more
2/23/2023
/ Centers for Medicare & Medicaid Services (CMS) ,
Compliance ,
Consolidated Appropriations Act (CAA) ,
Coronavirus/COVID-19 ,
Department of Health and Human Services (HHS) ,
Department of Justice (DOJ) ,
Dispute Resolution ,
Enforcement ,
Health Care Providers ,
Healthcare ,
Medicaid ,
Medicare ,
Mental Health ,
No Surprises Act (NSA) ,
Physician Fee Schedule ,
Public Health Emergency ,
Risk Assessment
Proposed changes to the federal substance use disorder law will increase provider efficiency and alignment with the Health Insurance Portability and Accountability Act (HIPAA). In a move that seeks to decrease administrative...more
While most state data breach notification statutes contain similar components, there are important differences, meaning a one-size-fits-all approach to notification will not suffice. What’s more, as data breaches continue to...more
9/8/2020
/ Compliance ,
Corporate Counsel ,
Data Breach ,
Good Faith ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Personal Information ,
Personally Identifiable Information ,
Popular ,
Safe Harbors ,
State Data Breach Notification Statutes ,
Substantial Risk of Harm