News & Analysis as of

HIPAA Breach Notification Rule Electronic Protected Health Information (ePHI) Data Breach

Jackson Lewis P.C.

OCR’s “Risk Analysis” Enforcement Initiative Continues Against Another Business Associate

Jackson Lewis P.C. on

On August 18, 2025, the Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement with BST & Co. CPAs, LLP (BST). The announcement continues OCR’s escalating enforcement of the HIPAA...more

Akerman LLP - Health Law Rx

FTC’s Updated Health Breach Notification Rule Puts Health App Developers on Notice

Akerman LLP - Health Law Rx on

The Federal Trade Commission’s (FTC) years-long effort to modernize its Health Breach Notification Rule (HBNR) in the midst of a swiftly changing technological landscape appears to be coming to an end. On Thursday, May 30,...more

Tucker Arensberg, P.C.

HIPAA Fundamentals for Providers

Tucker Arensberg, P.C. on

In March of this year, The Office for Civil Rights of the Department of Health and Human Services issued a letter addressing the recent cybersecurity incident impacting many health care entities, primarily Change Healthcare,...more

Robinson+Cole Data Privacy + Security Insider

Annual Breach Notification Deadline to OCR Looming

Robinson+Cole Data Privacy + Security Insider on

HIPAA requires that covered entities notify the Office for Civil Rights (OCR) of any breaches of unsecured protected health information that affects less than 500 individuals in a calendar year within 60 days following the...more

Holland & Knight LLP

FTC Seeks First-Ever Health Breach Notification Rule Enforcement: Pixel Users Beware

Holland & Knight LLP on

For the first time ever, the Federal Trade Commission (FTC) is seeking enforcement under the Health Breach Notification Rule. This regulation requires certain businesses not covered by the Health Insurance Portability and...more

Spilman Thomas & Battle, PLLC

OCR and HIPAA Compliance – The Next Step

Spilman Thomas & Battle, PLLC on

Recently, lawsuits have been filed against Duke and WakeMed regarding their use of Meta’s Meta Pixel tracking product and the alleged improper disclosure of patients’ protected health information (“PHI”). The U.S. Department...more

Arnall Golden Gregory LLP

Upcoming Annual Deadline for HIPAA Small Breach Reporting: March 1, 2022

Arnall Golden Gregory LLP on

HIPAA-covered entities should note the quickly approaching March 1, 2022 deadline for reporting breaches of unsecured protected health information that occurred in 2021 and involved fewer than 500 individuals. This article...more

Health Care Compliance Association (HCCA)

Compliance Perspective: What's New in Healthcare Privacy

Health Care Compliance Association (HCCA) on

Recently the Health Care Compliance Association released the new Health Care Privacy Handbook, 3rd Edition. https://www.hcca-info.org/health-care-privacy-handbook To learn what’s new in the book and in healthcare privacy...more

Robinson+Cole Data Privacy + Security Insider

Yearly Data Breach Reporting Due to OCR by February 29

Robinson+Cole Data Privacy + Security Insider on

Every year, we remind our readers that the HIPAA data breach notification regulations require covered entities to notify the Office for Civil Rights (OCR) of any reportable data breaches that involved fewer than 500...more

Tucker Arensberg, P.C.

$1,600,000 Civil Money Penalty for HIPAA Violations by the Texas Health and Human Services Commission

Tucker Arensberg, P.C. on

On November 7, 2019, the U.S. Department of Health and Human Services, Office for Civil Rights (“HHS”) announced a $1,600,000 civil money penalty for violations of the Health Insurance Portability and Accountability Act of...more

10 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide