Updates to Statute 1557 that Healthcare Providers Need to Know
Privacy and Healthcare Business Associates with Isabella Porter
State Law Privacy Video Series | Healthcare Entities and Health Data
Gerry Blass on Healthcare Vendor Risk Management
AGG Talks: Technology - In the Balance: Interoperability and Security
Is Your Practice's Marketing HIPAA Compliant?
Relaxed HIPAA Restrictions For Providers Using Telehealth
Compliance Perspectives: Permissible Disclosures under HIPAA, Especially in the Time of COVID-19
Polsinelli Podcasts - Confusion to Clarity on the Future of the 340B Program
Polsinelli Podcast - HIPAA Changes Overview
As previously discussed in our prior blog post, on August 1, 2025, the Department of Health and Human Services (HHS) issued a Notice announcing a much-anticipated 340B Rebate Model Pilot Program (Pilot Program). Subsequently,...more
On June 20, 2024, a U.S. federal district court held, in a suit brought by Jones Day, that the Department of Health and Human Services ("HHS") had misapplied the Health Insurance Portability and Accountability Act ("HIPAA")...more
October has been a busy month for the OCR, which is tasked with enforcing the regulations issued under HIPAA. In the past week, the OCR released two new guidance documents aimed at reducing the privacy and security risks...more
The U.S. Department of Health and Human Services Office for Civil Rights (OCR) issued guidance regarding covered entities’ and business associates’ use of tracking technologies (the Guidance). As discussed in greater detail...more
On December 1, 2022, the Centers for Medicare and Medicaid Services’ Office of Civil Rights (OCR) issued new guidance to covered entities and business associates regarding website and application user data tracking and how...more
Covered Entities and Business Associates must comply with HIPAA in their use of online tracking technologies, including cookies, pixels or similar code. The U.S. Department of Health and Human Services (HHS), Office for Civil...more
In June 2022, the HHS Office for Civil Rights issued new HIPAA Privacy Rule Guidance in response to the Supreme Court’s decision in Dobbs v Jackson Women’s Health Organization and state legislation which followed the decision...more
Following the Supreme Court’s ruling overturning Roe v. Wade in Dobbs v. Jackson Women’s Health Organization, the Biden Administration has outlined a framework for federal executive action designed to protect access to...more
Many states have enacted or revived statutes limiting or barring access to abortion in the wake of the Supreme Court of the United States’ ruling in Dobbs v. Jackson Women’s Health Organization and further legislative or...more
The Office of Civil Rights (“OCR”), which is the federal agency that enforces the health care privacy rules under the Health Insurance Portability and Accountability Act (“HIPAA”), recently published guidance covering various...more
The United States Department of Health and Human Services Office for Civil Rights (OCR) recently issued updated guidance on contacting former COVID-19 patients about blood plasma donation in light of the privacy protections...more
The Health Resources and Services Administration's (HRSA) Office of Pharmacy Affairs (OPA) has created a COVID-19 Resources page on its website providing information for 340B drug pricing program stakeholders. In particular,...more
As a result of the novel Coronavirus pandemic, the Office for Civil Rights (OCR) recently issued several pieces of guidance to help HIPAA covered entities and their business associates to best address how patient information...more
School leaders are often understandably confused as to which law applies to health- or medical-related records in schools: The Family Educational Rights and Privacy Act (FERPA) or the Health Insurance Portability and...more
In this episode, Macy Flinchum and Victoria Hamscho discuss recent developments in the 340B Drug Pricing Program, including recent guidance by the Centers for Medicare and Medicaid Services on best practices for states to...more
The FBI has issued new guidance specifically applicable to medical and dental facilities regarding the cybersecurity risk of File Transfer Protocol (“FTP”) servers operating in “anonymous” mode. FTPs are routinely used to...more
In an emergency, when there is a flurry of activity in a hospital, covered entities often struggle with who they are permitted to release patient information to under HIPAA. On January 11, 2017, the Department of Health and...more
On October 6, 2016, the Department of Health and Human Services Office for Civil Rights (OCR) released HIPAA guidance on cloud computing (Guidance). The Guidance is intended to help covered entities and business associates...more
Ransomware attacks at hospitals and other healthcare facilities have dramatically increased over the last several years, putting healthcare providers in the uncomfortable position of having to consider paying thousands of...more
On July 11, 2016, the Office for Civil Rights (OCR) released important new guidance on ransomware for hospitals and other healthcare providers and finally addressed the question of whether electronic protected health...more
In its third release of HIPAA guidance over the past few weeks, the Department of Health and Human Services (HHS) released“The Real HIPAA: Care Coordination, Care Planning, and Case Management Examples” to assist covered...more
Last week, the Health Resources and Services Administration (HRSA), part of HHS, released proposed new guidance for covered entities enrolled in the 340B Drug Pricing Program, as well as drug manufacturers required to make...more