On June 9, 2025, Oregon Governor Tina Kotek signed into law Oregon Senate Bill 951 (Oregon CPOM Law), further expanding Oregon’s prohibition on the corporate practice of medicine (CPOM) doctrine. The stated purpose of the...more
6/20/2025
/ Corporate Practice of Medicine ,
Health Care Providers ,
Healthcare ,
Hospitals ,
Long Term Care Facilities ,
Mental Health ,
New Legislation ,
Non-Compete Agreements ,
Oregon ,
Physicians ,
Private Equity ,
Regulatory Reform
In the latest episode of Health Law Diagnosed, host Bridgette Keller discusses the new Massachusetts Health Care Market Review Law and what this means for health care providers, investors, and other key stakeholders. She is...more
3/12/2025
/ Acquisitions ,
False Claims Act (FCA) ,
Health Care Providers ,
Healthcare ,
Hospitals ,
Investors ,
Mergers ,
New Legislation ,
Private Equity ,
Regulatory Requirements ,
State and Local Government
In the latest episode of Health Law Diagnosed, host Bridgette Keller discusses the new Massachusetts Health Care Market Review Law and what this means for health care providers, investors, and other key stakeholders. She is...more
The latest entrant in a national wave of policymakers enacting health care market oversight laws that have a significant impact on providers and investors, Massachusetts Governor Maura Healey has signed into law House Bill...more
1/9/2025
/ Acquisitions ,
Compliance ,
Department of Justice (DOJ) ,
False Claims Act (FCA) ,
Health Care Providers ,
Investors ,
Mergers ,
Pharmacy Benefit Manager (PBM) ,
Private Equity ,
Regulatory Requirements ,
REIT ,
Reporting Requirements ,
State and Local Government ,
State Attorneys General
Covered entities, business associates, and any entities that collect health information about consumers online should carefully review the latest joint letter from the Office for Civil Rights (OCR) and the Federal Trade...more
7/25/2023
/ Cybersecurity ,
Data Collection ,
Data Privacy ,
Federal Trade Commission (FTC) ,
FTC Act ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
PHI ,
Third-Party ,
Tracking Systems
All players in the health and wellness ecosystem should be following developments around the American Data Privacy and Protection Act (ADPPA). If enacted, the ADPPA would be a watershed in the regulation of the privacy and...more
Today, we’re looking back at HIPAA and other privacy and security developments in 2018. This past year saw continued HIPAA enforcement (including the largest ever fine for a HIPAA breach), reminders from the OCR on best...more
1/7/2019
/ Covered Entities ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
Department of Health and Human Services (HHS) ,
General Data Protection Regulation (GDPR) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
PHI ,
Popular ,
State Data Breach Notification Statutes
Late last month, Senators Grassley (R-IA), Brown (D-OH), and Blumenthal (D-CT) introduced the Fighting the Opioid Epidemic with Sunshine Act, a bill that would expand Physician Payment Sunshine Act reporting requirements to...more
Last week, in a case being watched locally and nationally, the Massachusetts Supreme Judicial Court (“SJC”) ruled that local government approval is not required for the operation of a private needle exchange program and that...more
The FBI has issued new guidance specifically applicable to medical and dental facilities regarding the cybersecurity risk of File Transfer Protocol (“FTP”) servers operating in “anonymous” mode. FTPs are routinely used to...more
3/30/2017
/ Business Associates ,
Covered Entities ,
Cyber Attacks ,
Cybersecurity ,
Dentists ,
FBI ,
File Transfer Protocols (FTP) ,
Hackers ,
Health Care Providers ,
Hospitals ,
New Guidance ,
Pharmacies ,
PHI ,
Physicians ,
Ransomware
On July 11, 2016, the Office for Civil Rights (OCR) released important new guidance on ransomware for hospitals and other healthcare providers and finally addressed the question of whether electronic protected health...more
7/12/2016
/ Breach Notification Rule ,
Covered Entities ,
Cyber Attacks ,
Data Breach ,
Employee Training ,
Hackers ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
Hospitals ,
New Guidance ,
OCR ,
PHI ,
Ransomware ,
Security Risk Assessments
In a chain of events that should be a wake-up call to any entity using and storing critical health information, Hollywood Presbyterian Medical Center (“HPMC”) has announced that it paid hackers $17,000 to end a malware attack...more
On July 7th, the House introduced much anticipated bipartisan telehealth legislation. The Medicare Telehealth Parity Act of 2015, introduced by Representative Mike Thompson (D-CA) and co-sponsored by Representatives Gregg...more
7/14/2015
/ Centers for Medicare & Medicaid Services (CMS) ,
Health Care Providers ,
Health Insurance ,
Healthcare ,
Healthcare Reform ,
Medicaid ,
Medicare ,
Patients ,
Pending Legislation ,
Physicians ,
Telehealth ,
Telemedicine
Late last week, Texas telemedicine practitioners received a temporary reprieve from a new regulation issued by the Texas Medical Board (the “Board”) when a Texas federal court prohibited implementation of the new rule that...more