In the third and final episode of Florida Capital Conversations' healthcare privacy series, Tallahassee attorneys Shannon Hartsfield and Eddie Williams join hosts Nathan Adams and Mia McKown to discuss the challenges of...more
The U.S. Department of Health and Human Services (HHS) has issued a Notice of Proposed Rulemaking (NPRM) that strengthens the Security Rule of the Health Insurance Portability and Accountability Act (HIPAA), which, if...more
In addition to holiday celebrations, the month of December typically ushers in a final round of enforcement actions by the U.S. Department of Health and Human Services' (HHS) Office of Civil Rights (OCR), and 2024 is no...more
12/4/2024
/ Business Associates ,
Compliance ,
Compliance Dates ,
Covered Entities ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
Enforcement Actions ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Security Rule ,
NIST ,
OCR ,
PHI ,
Privacy Laws ,
Reproductive Healthcare Issues ,
Security and Privacy Controls
New York hospitals have less than a year to dust off their Health Insurance Portability and Accountability Act (HIPAA) compliance programs and update them to comply with more stringent and detailed state regulations. Last...more
11/22/2024
/ Chief Information Security Officer (CISO) ,
Compliance ,
Cybersecurity ,
Department of Health and Human Services (HHS) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Hospitals ,
New Regulations ,
Personally Identifiable Information ,
PHI ,
Reporting Requirements ,
Risk Assessment ,
Security and Privacy Controls ,
State Health Departments
President Ronald Reagan famously quipped, "I think you all know that I've always felt that the nine most terrifying words in the English language are: I'm from the Government, and I'm here to help."1 At an Oct. 23-24, 2024,...more
10/31/2024
/ Artificial Intelligence ,
Biden Administration ,
Compliance ,
Covered Entities ,
Cybersecurity ,
Department of Health and Human Services (HHS) ,
Enforcement ,
Federal Trade Commission (FTC) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare Facilities ,
Incident Response Plans ,
Internet of Things ,
Medical Devices ,
NIST ,
OCR ,
Popular ,
Ransomware ,
Security and Privacy Controls ,
Technical Conference
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has, as part of its mandate, the responsibility to enforce the Health Insurance Portability and Accountability Act (HIPAA) Security Rule....more
5/14/2024
/ Audits ,
Business Associates ,
Compliance ,
Covered Entities ,
Data Privacy ,
Data Security ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Security Rule ,
HITECH Act ,
OCR ,
PHI ,
Popular ,
Ransomware ,
Risk Assessment ,
Web Tracking
Healthcare compliance risks exist even when a company takes steps to structure its business activities to follow the government's own statements. A recent decision by the U.S. District Court for the Eastern District of...more
Providing care via electronic communication when patients and providers are in separate locations, known as telemedicine or telehealth, has been possible for decades. The exigent circumstances sparked by the COVID-19 pandemic...more
Telehealth has been around for decades, but restrictive reimbursement rules kept it out of widespread use for many treatment needs. Then along came the COVID-19 pandemic and everything changed rapidly. Suddenly, due to the...more
10/5/2022
/ Compliance ,
Coronavirus/COVID-19 ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
GAO ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Reports ,
Medical Reimbursement ,
OCR ,
Patient Privacy Rights ,
Telehealth ,
Telemedicine
An amendment to the Health Information Technology for Economic and Clinical Health (HITECH) Act was signed into law on Jan. 5, 2021, directing U.S. Health and Human Services (HHS) to consider "recognized security practices"...more
8/31/2021
/ Compliance ,
Covered Entities ,
Cybersecurity ,
Data Protection ,
Data Security ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Industry Cybersecurity Practices (HICP) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HITECH Act ,
Incident Response Plans ,
New Legislation ,
NIST ,
PHI
Companies in the healthcare space sometimes tout to prospective customers that they are "Health Insurance Portability and Accountability Act (HIPAA) compliant." A recent Federal Trade Commission (FTC) settlement suggests that...more
The 340B Drug Pricing Program (340B Program), established by Section 602 of the Veterans Health Care Act of 1992, is administered by the Health Resources and Services Administration (HRSA) of HHS. The 340B Program requires...more
9/29/2015
/ Audits ,
Compliance ,
Covered Entities ,
Dental Practice ,
Department of Health and Human Services (HHS) ,
Drug Pricing ,
Fee-for-Service ,
Healthcare ,
Hospice ,
Hospitals ,
HRSA ,
MCOs ,
Medicaid ,
Medicaid Reimbursements ,
Medical Reimbursement ,
Pharmaceutical Industry ,
Pharmacies ,
Prescription Drugs ,
Section 340B ,
Skilled Nursing Facility
On Oct. 10, 2014, the 11th Circuit opinion in Murphy v. Dulay provides significant guidance regarding HIPAA authorization forms. One of the most important provisions of the opinion focuses on the fact that HIPAA...more
Covered entities and business associates have only until September 22, 2014 to update business associate agreements that were in place as of January 25, 2013. For those members of the health industry and their vendors that...more
Health care providers, health plans, business associates, and other entities affected by the federal HIPAA privacy and security regulations are quickly running out of excuses for not having a robust HIPAA compliance program...more
Pharmaceutical wholesalers typically focus on getting drugs from Point A to Point B in a secure and efficient manner. Reputable wholesalers have detailed policies and procedures relating to recordkeeping, pedigrees, drug...more