The Office for Civil Rights (“OCR”) under the U.S. Department of Health and Human Services (“HHS”) recently issued a Notice of Proposed Rulemaking (the “Proposed Rule”) to modify the Health Insurance Portability and...more
The U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”), which enforces HIPAA, recently announced a new enforcement initiative, the Risk Analysis Initiative, in conjunction with OCR’s seventh...more
On August 1, 2024, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) announced the imposition of a civil monetary penalty (“CMP”) of $115,200 collected against American Medical Response...more
Recently, the United States Department of Health and Human Services (“HHS”), Centers for Medicare & Medicaid Services (“CMS”), and Office of the National Coordinator for Health Information Technology (“ONC”) announced the...more
7/5/2024
/ Centers for Medicare & Medicaid Services (CMS) ,
Critical Access Hospitals ,
Department of Health and Human Services (HHS) ,
Final Rules ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare Facilities ,
Hospitals ,
Information Blocking Rules ,
Medicare ,
MIPS ,
OIG ,
ONC
Cyberattacks and data incidents are rapidly increasing, and third-party services companies are a frequent source of exposure for healthcare providers. Healthcare is a prime target for cybercriminals, with ransomware and...more
3/21/2024
/ Compliance ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
Popular ,
Risk Management
On December 7, 2023, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced its first-ever settlement involving a phishing attack under the Health Insurance Portability and...more
The U.S. Department of Health and Human Services (“HHS”) on October 30, 2023, issued a Notice of Proposed Rulemaking (“NPRM”) to establish penalties for healthcare providers found to have committed information blocking. This...more
11/9/2023
/ 21st Century Cures Act ,
Centers for Medicare & Medicaid Services (CMS) ,
Department of Health and Human Services (HHS) ,
Electronic Medical Records ,
Electronic Protected Health Information (ePHI) ,
Health Care Providers ,
Health Information Technologies ,
Information Blocking Rules ,
Medicare ,
NPRM ,
ONC
With 2023 underway, healthcare providers and other “covered entities,” as defined under the Health Insurance Portability and Accountability Act (“HIPAA”), should be mindful of the upcoming annual reporting deadline for small...more
In recent weeks, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) has announced 12 resolution agreements settling alleged violations of the HIPAA rules. Covered entities and business...more
HIPAA-covered entities should note the quickly approaching March 1, 2022 deadline for reporting breaches of unsecured protected health information that occurred in 2021 and involved fewer than 500 individuals. This article...more
1/26/2022
/ Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Department of Health and Human Services (HHS) ,
Electronic Protected Health Information (ePHI) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
HIPAA Breach Notification Rule ,
Patient Privacy Rights ,
PHI ,
Reporting Requirements
The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) recently announced the 20th Resolution Agreement in its Health Insurance Portability and Accountability Act (HIPAA) Right of Access...more
The U.S. Department of Health and Human Services (HHS), Office of Inspector General (OIG) recently updated its 2021 Work Plan in January to include audits of Medicare Part B and home health telehealth services by OIG’s Office...more
2020 was an active year for HIPAA regulatory activity by the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR). In this article, we take a look at some of the HIPAA highlights from 2020 and...more
Arnall Golden Gregory LLP's Food & Drug Newsletter is a monthly update of legal and regulatory issues that affect the FDA-regulated community and highlights articles from members of our Food & Drug practice, as well as from...more
Overview - On December 10th, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) announced significant proposed changes to the Health Insurance Portability and Accountability Act...more
As the end of 2020 approaches, the melody to “Auld Lang Syne” inevitably comes to mind. The meaning of this song is particularly appropriate as we consider what will stay, and what will pass when it comes to telehealth in...more
Last week, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) continued in its recent trend of rapid settlement agreement announcements. With two more settlements announced in quick...more
In a flurry of recent activity, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has announced eight resolution agreements since September 15, 2020. These resolution agreements settle...more
On July 27, 2020, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a resolution agreement with Lifespan Health System Affiliated Covered Entity (Lifespan ACE) to resolve alleged...more
On July 23, 2020, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a resolution agreement with a small health care provider regarding an alleged breach of HIPAA Security Rule...more
On July 23, 2020, U.S. Department of Health and Human Services (HHS) Secretary Alex Azar renewed the declaration that a national public health emergency (PHE) exists due to the COVID-19 pandemic....more
In this update, we incorporate information on waivers of penalties for noncompliance with the regulatory requirements under the HIPAA Rules against covered health care providers in connection with the good faith provision of...more
After a quiet start, 2019 developed into another active enforcement year for HIPAA, with a notable flurry of activity in the last three months of 2019....more
The U.S. District Court for the District of Columbia has vacated controversial portions of the U.S. Department of Health and Human Service’s (“HHS”) regulations and guidance regarding access and copy fees for third party...more
In its second HIPAA resolution agreement of 2019, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) again emphasizes the importance of compliance with the HIPAA Security Rule and of both timely...more