The State of Healthcare Enforcement
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 247: Reimagining Cell Therapy for Solid Tumors with Ming-Wei Chen and Fangheng Zhou of RephImmune
What’s in Your Operating Agreement? Legal Tips for Healthcare Providers
10 For 10: Top Compliance Stories For the Week Ending, July 26, 2025
Key Discovery Points: Don’t Get Caught with Your Hand in the Production Cookie Jar
Work this Way: An Employment Law Video Podcast | Episode 50: Creating a Competitive Advantage Through Employee Benefits with Connor Shaw of Gallagher
False Claims Act Insights - Will Recent Leadership Changes Lead to FCA Enforcement Policy Changes?
Podcast: Addressing Patient Complaints About Privacy Violations
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 236: Advocating for Accessible Diagnoses with Sydney Severance of Operation Upright
Podcast - Navigating the New Landscape of Private Equity in Healthcare
Taking the Pulse: A Health Care and Life Sciences Video Podcast | Episode 235: Revolutionizing Cancer Care with Eric Perrault of Kiyatec
Evolving AI Legislation: Federal Policies, Task Forces, and Proposed Laws — The Good Bot Podcast
CareYaya: A Revolutionary Approach to Elder Care
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 234: Life-Saving Collaboration in the Life Sciences Industry with John Crowley, President & CEO of BIO
False Claims Act Insights - Trump DOJ Sharpens Its Focus on Healthcare Fraud
Federal Court Strikes Down FDA Rule on LDTs - Thought Leaders in Health Law®
Breaking Down the Shifting Vaccine Policy Landscape – Diagnosing Health Care Video Podcast
Criminal Health Care Fraud Enforcement: Projections for 2025 and Beyond – Diagnosing Health Care Video Podcast
Healthcare Industry Segment-Specific Compliance Program Guidances (ICPGs)
DOJ Addresses AI in Corporate Compliance Programs — The Good Bot Podcast
Editor’s Note: PYA and Foley & Lardner hosted the 7th Annual “Let’s Talk Compliance” two-day virtual conference on January 23 and 24, 2025. Panelists included Foley attorneys and PYA subject matter experts. The event was...more
As the new year continues, it is useful to review your practice’s processes and policies to ensure that the practice operates with efficiency and remains compliant with ever-changing healthcare regulations....more
Can you remember healthcare security 20+ years ago? It seems like a different world from now. Believe it or not, the HIPAA Security Rule has barely changed since it was first enacted in 2003 and has been long overdue for a...more
As the new year begins, it is useful to review your practice’s processes and policies to ensure that the practice operates with efficiency and remains compliant with ever-changing healthcare regulations....more
The U.S. Department of Health and Human Services Office for Civil Rights (OCR) appears to have made cybersecurity its New Year’s resolution. The first few weeks of 2025 have already brought with them proposed amendments to...more
The U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”), which enforces HIPAA, recently announced a new enforcement initiative, the Risk Analysis Initiative, in conjunction with OCR’s seventh...more
As the first state law to regulate the results of Artificial Intelligence System (AI System) use, Colorado’s SB24-205, “Concerning Consumer Protections in Interactions with Artificial Intelligence Systems” (the Act), has...more
At the Health Care Compliance Association’s recent Annual Compliance Institute in Nashville, artificial intelligence (AI) dominated the conversation. A common theme: how does the compliance officer keep pace with this...more
The Office of the National Coordinator for Health Information Technology (ONC) and the HHS Office for Civil Rights (OCR) have recently launched a joint HIPAA Security Risk Assessment (SRA) Tool. The tool is designed to assist...more
Report on Patient Privacy 23, no. 10 (October, 2023) By 2016, it should have been clear to HIPAA covered entities that a security risk analysis—and corresponding risk management plan—were compliance basics. Yet, a new...more
Report on Patient Privacy 23, no. 10 (October, 2023) Kaiser Foundation Health Plan Inc. and Kaiser Foundation Hospitals will pay California $49 million to resolve allegations that they unlawfully disposed of hazardous waste,...more
Corporate compliance programs in the healthcare industry include many of the same elements that we are all familiar with – risk assessments, code of ethics, written policies and procedures, comprehensive training...more
Five Years After ‘a Singular Human Error,’ Two Breach Notices, Revenue Firm Settles With OCR - As far as settlements for alleged HIPAA violations go, a recent agreement announced by the HHS Office for Civil Rights (OCR)...more
Illinois Supreme Court Allows Massive Damages in Biometric Privacy Cases - “The case involves Ohio-based fast-food company White Castle.” Why this is important: Illinois has the strictest biometric privacy law in the...more
Much is being written about “remote work” – is it productive, will demand for it continue or be curtailed in a recession, is cybersecurity compromised, does it inhibit workplace culture, collaboration, etc. Lots of questions,...more
HCCA's Basic Compliance Academy is a three-and-a-half-day intensive training program focusing on subject areas at the heart of health care compliance practice. Its faculty is made up of experts in the field. Courses are...more
The Office for Civil Rights (OCR) announced on October 23, 2019, that Jackson Health System (“Jackson”), a not for profit hospital system comprised of six hospitals, urgent care centers, nursing facilities and primary care...more
There are myriad opportunities for hospitals and health systems (HHSs) to engage in data-focused collaborations with other stakeholders in the healthcare industry. These collaborations include, to an increasing extent,...more
There is no such thing as compliance with the NIST Cybersecurity Framework (FTC). In September, the FTC dispelled a commonly held misconception regarding the NIST Framework: It “is not, and isn’t intended to be, a standard or...more
In a recent newsletter, the Office for Civil Rights (OCR) encourages health care organizations to review their procedures around authentication and “ensure that they have the appropriate safeguards in place.”...more
Healthcare organizations – ranging from physician practice groups to large, multi-state hospital systems – face a variety of risks, including fraud and abuse, as well as HIPAA privacy issues. Starting from a baseline risk...more
For health care professionals who began accepting Meaningful Use incentive money at the outset of availability under the Medicare option in 2011, the year 2015 is an important year. If the provider has met all core...more
Officials at the U.S. Department of Health and Human Services Office of Civil Rights (HHS OCR) have recently selected a vendor to conduct the second wave of HIPAA audits. These so-called “Phase 2 Audits” are set to commence...more
Officials at the U.S. Department of Health and Human Services Office of Civil Rights (HHS OCR) have recently selected a vendor to conduct the second wave of HIPAA audits. These so-called "Phase 2 Audits" are set to commence...more
The 2015 HIPAA Security conference held by the National Institute of Standards and Technology (“NIST”) and the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) kicked off last week with OCR’s...more