Layna Cook Rush

Layna Cook Rush

Baker Donelson

Contact
View Bio
RSS

Latest Posts › Electronic Protected Health Information (ePHI)

Share:

Insider Threats Are Just as Dangerous as Ransomware – Lessons from the Latest OCR HIPAA Settlement

What's New? On May 28, 2025, the U.S. Department of Health and Human Services' Office for Civil Rights (OCR) announced an $800,000 settlement with a large Florida-based health care provider over potential violations of the...more

6/5/2025  /  Data Breach , Electronic Medical Records , Electronic Protected Health Information (ePHI) , Enforcement Actions , Health Care Providers , HIPAA Security Rule , HIPAA Violations , OCR , PHI , Ransomware , Risk Management , Settlement

Proposed HIPAA Security Rule Updates

The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) issued a Notice of Proposed Rulemaking (NPRM) on December 27, 2024, to update the Health Insurance Portability and Accountability Act...more

1/13/2025  /  Compliance , Cybersecurity , Data Privacy , Data Security , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Health Insurance Portability and Accountability Act (HIPAA) , NIST , OCR , Risk Management

The Office for Civil Rights Recently Settled Two Ransomware Related Investigations

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently settled two ransomware cases with covered entities. These cases signal the government's growing concern with health care...more

10/11/2024  /  Corrective Action Plans (CAPs) , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Enforcement Actions , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Violations , OCR , Popular , Ransomware , Risk Assessment , Settlement

District Court Ruling Impacts HIPAA Access Request Permissible Charges

On January 23, 2020, the United States District Court for the District of Columbia declared sections of the 2013 Omnibus Rule unlawful. The Court found that the Department of Health and Human Services (HHS) impermissibly...more

2/5/2020  /  Administrative Procedure Act , Covered Entities , Department of Health and Human Services (HHS) , EHR , Electronic Protected Health Information (ePHI) , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Access Request , HIPAA Omnibus Rule , HITECH Act , Lack of Authority , Notice and Comment , PHI , Popular , Third-Party Rights , Unlawful Policies , Vendors

Protecting LTC Residents' PHI: Eight Tips for Avoiding a Data Breach

Organizations that meet the definition of "covered entity" under the Health Insurance Portability and Accountability Act of 1996 and its implementing regulations (HIPAA) must be diligent to maintain the privacy and security...more

4/23/2019  /  Business Associates , Covered Entities , Cyber Insurance , Data Breach , Data Privacy , Data Security , Data Use Policies , Electronic Protected Health Information (ePHI) , Employee Training , Encryption , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Privacy Rule , Long Term Care Facilities , Long-Term Care , OCR , Passwords , Patient Privacy Rights , Patients , Phishing Scams , Popular , Portable Devices , Risk Assessment
5 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide