The U.S. Department of Health and Human Services Office for Civil Rights (OCR) continues its enforcement activities to emphasize compliance with the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule’s...more
The U.S. Department of Health and Human Services Office for Civil Rights (“OCR”) issued guidance regarding the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) privacy rule (the “Privacy Rule”) in the...more
10/8/2021
/ Coronavirus/COVID-19 ,
Covered Entities ,
Disclosure ,
Employees ,
Employer Liability Issues ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
HIPAA Privacy Rule ,
OCR ,
Personal Information ,
PHI ,
Vaccinations
On February 24, 2021, the Office for Civil Rights at the U.S. Department of Health and Human Services (“OCR”) announced that it will not impose penalties against covered entities or their business associates that use online...more
3/4/2021
/ Coronavirus/COVID-19 ,
Covered Entities ,
Data Storage ,
Encryption ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
Penalties ,
PHI ,
Secure Scheduling ,
Vaccinations
Under the HIPAA Privacy Rule, individuals have a right to timely access their medical records at a reasonable cost. With some exceptions, a health care provider must provide those records without reasonable delay and within...more
In its Summer 2020 Cybersecurity Newsletter, the U.S. Department of Health & Human Services Office for Civil Rights (OCR) expressed a concern that organizations lacked sufficient understanding as to the location of their...more
9/14/2020
/ Asset Management ,
Compliance ,
Cybersecurity ,
Data Management ,
Electronic Protected Health Information (ePHI) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
HIPAA Security Rule ,
Information Security ,
Inventory ,
OCR
A recent decision by the Supreme Court of Appeals of West Virginia draws a sharp line of distinction for hospitals responding to nonparty subpoenas against the unauthorized disclosure of confidential mental health records. In...more
6/12/2018
/ Confidential Information ,
Discovery ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Medical Records ,
Motion to Compel ,
Motions to Quash ,
Non-Parties ,
Policies and Procedures ,
Subpoenas ,
Written Consent
Following recent international cyber attacks, the U.S. Department of Health and Human Services (HHS) has issued warnings to healthcare organizations, provided a cyber attack checklist, and launched its revised HIPAA Breach...more