News & Analysis as of

Compliance Personally Identifiable Information Health Insurance Portability and Accountability Act (HIPAA)

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. ... more +
Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations.  In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -
Hanzo

Compliance Under Pressure: Audit Readiness for Healthcare Providers

Hanzo on

In today’s healthcare environment, compliance is a defining element of patient care quality, operational integrity, and public trust. Oversight from agencies such as the Office for Civil Rights (OCR), the Centers for Medicare...more

Holland & Knight LLP

NY Department of Health Bolsters Hospital Cybersecurity Regulations

Holland & Knight LLP on

New York hospitals have less than a year to dust off their Health Insurance Portability and Accountability Act (HIPAA) compliance programs and update them to comply with more stringent and detailed state regulations. Last...more

Health Care Compliance Association (HCCA)

Privacy Briefs: November 2023

Health Care Compliance Association (HCCA) on

Report on Patient Privacy 23, no. 11 (November, 2023) The American Hospital Association (AHA) is urging federal lawmakers to intervene with the HHS Office for Civil Rights (OCR) so that hospitals and health systems can...more

Foley & Lardner LLP

State Data Breach Notification Laws - September 2020

Foley & Lardner LLP on

While most state data breach notification statutes contain similar components, there are important differences, meaning a one-size-fits-all approach to notification will not suffice. What’s more, as data breaches continue to...more

Adler Pollock & Sheehan P.C.

HIPAA And Related Patient Privacy Considerations In The Wake Of COVID-19

Adler Pollock & Sheehan P.C. on

The recent outbreak of the 2019 Novel Coronavirus (“COVID-19”) in the United States has resulted in providers and governmental agencies striving to identify potential cases and contain further transmissions of the virus. ...more

Health Care Compliance Association (HCCA)

Updated joint guidance on privacy and student education and health records

Health Care Compliance Association (HCCA) on

Compliance Today (February 2020) - On December 19, the U.S. Department of Education and the Office for Civil Rights at the U.S. Department of Health and Human Services announced the release of the “updated joint guidance...more

Bass, Berry & Sims PLC

Latest HIPAA Compliance & Enforcement Trends

Bass, Berry & Sims PLC on

Enforcement activity by the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) showed no signs of slowing throughout 2018 and has already picked up speed in 2019. More recent and significant actions...more

Jaburg Wilk

Everyone is Doing Business Online, and Most People are Doing it Wrong - 5 Practical Steps to Protect Your Customer Data

Jaburg Wilk on

Data breaches are inevitable. 2017 was the “year of the data breach,” with more exposure of personally identifiable information (“PII”) than ever before. If you were one of the 30% of US-based consumers who were notified of a...more

Bilzin Sumberg

Alphabet Soup and Data Security

Bilzin Sumberg on

In the span of two days, mobile device users learned of two data breaches that could compromise their personal data. In one, Experian (a credit reporting agency) reported that it was hacked, potentially putting 15 million...more

BakerHostetler

HIPAA Fine Underscores OCR’s Focus on Physician Group Compliance

BakerHostetler on

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) recently announced a $750,000 fine and resolution agreement, including a Corrective Action Plan (CAP), for Cancer Care Group, P.C. (CCG), a...more

Womble Bond Dickinson

Is Your HIPAA Compliance Program Ready for the FTC?

Womble Bond Dickinson on

Everyone in healthcare knows that the next round of HIPAA audits is coming. Covered entities and business associates have long been advised to review and update their HIPAA security risk analyses, have business associate...more

Akerman LLP - Health Law Rx

Evolving Litigation of Data Breach Claims

Akerman LLP - Health Law Rx on

An Illinois circuit court judge has dismissed five of six claims in a consolidated class action against Advocate Health and Hospital Corporation arising from a data breach in July 2013. The judge’s dismissal with prejudice...more

Orrick, Herrington & Sutcliffe LLP

Don’t Wait for It; Recent HIPAA Enforcement Action Signal More to Come in Phase 2 Audits

Orrick, Herrington & Sutcliffe LLP on

Officials at the U.S. Department of Health and Human Services Office of Civil Rights (HHS OCR) have recently selected a vendor to conduct the second wave of HIPAA audits. These so-called “Phase 2 Audits” are set to commence...more

Seyfarth Shaw LLP

OCR Enters into $750,000 Settlement with Physician Practice for HIPAA Violations

Seyfarth Shaw LLP on

On September 2, the Department of Health and Human Services Office of Civil Rights (OCR) announced a settlement with Cancer Care Group, P.C., a thirteen-physician oncology practice in Indiana related to violations of the...more

Robinson+Cole Data Privacy + Security Insider

OCR settlement reiterates importance of proactive security rule compliance

Robinson+Cole Data Privacy + Security Insider on

On September 2, 2015, the U.S. Department of Health & Human Services (HHS) announced that Cancer Care Group, P.C. (CCG), a physician practice located in Indiana, agreed to pay $750,000 as part of a settlement to resolve...more

Davis Wright Tremaine LLP

Time for a HIPAA Security Check-Up!

Davis Wright Tremaine LLP on

The 2015 HIPAA Security conference held by the National Institute of Standards and Technology (“NIST”) and the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) kicked off last week with OCR’s...more

Saul Ewing LLP

$750,000 Settlement Agreement Reiterates Importance of HIPAA Security Rule Compliance

Saul Ewing LLP on

On September 2, 2015, the U.S. Department of Health and Human Services ("HHS") announced that it had entered into a Settlement Agreement with an Indiana-based medical practice for alleged violations of the Health Insurance...more

Ballard Spahr LLP

California, Nevada Expand Scope of Customer Personal Information Subject to Reasonable Security Measures

Ballard Spahr LLP on

Recent statutory amendments passed in California and Nevada expanding the definition of “personal information” will significantly impact the security measures businesses operating in these states must implement when handling...more

Orrick, Herrington & Sutcliffe LLP

HIPAA Security Requirements Aren't Cloudy, Especially to Whistleblowers

Orrick, Herrington & Sutcliffe LLP on

Earlier this month, the U.S. Department of Health and Human Services Office for Civil Rights (HHS OCR) announced that it had entered into a settlement agreement with St. Elizabeth's Medical Center (SEMC) in Brighton,...more

Arnall Golden Gregory LLP

Legal Issues Business Leaders Need to Know in 2015: Top 10 Checklist

Arnall Golden Gregory LLP on

A compilation of time-sensitive and trending legal and regulatory issues that general counsels and business leaders should be aware of in 2015. Employers Should be Aware of Multigenerational Workforce Risk - For...more

McDermott Will & Emery

U.S. Privacy and Data Protection: 2013 Year in Review and a Look Ahead to 2014

McDermott Will & Emery on

In Boston, we celebrated Data Privacy Day (January 28) by presenting “U.S. Privacy and Data Protection: 2013 Year In Review and a Prediction of What’s to Come in 2014” for participants in an IAPP KnowledgeNet. Our panel of...more

Bradley Arant Boult Cummings LLP

Privacy and Security Alert: January 9th, 2014

Bradley Arant Boult Cummings LLP on

On December 5, 2013, the Office of Inspector General (OIG) reported on the Office for Civil Rights’ (OCR) compliance as of May 2011 with oversight and enforcement of the Security Rule and compliance with federal cybersecurity...more

22 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide