State Health Departments, Health Insurance Portability and Accountability Act (HIPAA)

Judge Issues TRO Pausing Data Transfer Under New CDPAP Framework

Holland & Knight LLP on 1/30/2025

Nassau County Judge Jerome C. Murphy issued a temporary restraining order (TRO) on Jan. 27, 2025, preventing the New York State Department of Health (DOH) from moving forward with the consolidation of the Consumer Directed...more

A New Budgetary Line Item for 2025 - New York-based Hospitals Should Plan Now for the Fiscal and Operational Costs Associated with...

BakerHostetler on 12/11/2024

On October 2, the New York State Department of Health (NYSDOH) issued new cybersecurity regulations (Regulations) for all general hospitals in New York state (“hospitals”), creating a new Section 405.46 in Title 10 (Health)...more

NY Department of Health Bolsters Hospital Cybersecurity Regulations

Holland & Knight LLP on 11/22/2024

New York hospitals have less than a year to dust off their Health Insurance Portability and Accountability Act (HIPAA) compliance programs and update them to comply with more stringent and detailed state regulations. Last...more

New York State Department of Health Adopts Hospital Cybersecurity Regulations

Husch Blackwell LLP on 11/13/2024

In November 2023, New York Governor Kathy Hochul announced proposed regulations that would be the first state regulations for hospitals in New York. The governor described the proposed regulation as a “nation-leading...more

New York State Prepares to Regulate Hospital Cybersecurity Programs

Mintz - Health Care Viewpoints on 11/29/2023

On November 13, 2023, Governor Kathy Hochul announced plans to regulate cybersecurity for New York general hospitals regulated under Article 28 of the Public Health Law. As proposed, the regulations will provide an additional...more

Updates to PA’s Mental Health and Substance Use Disorder Confidentiality Laws

Stevens & Lee on 7/27/2022

On July 7, 2022, Pennsylvania Governor Tom Wolf signed House Bills 1561 and 1563 into law, as Act 32 of 2022 and Act 33 of 2022, respectively. Act 32 of 2022 amended the confidentiality provisions of the state Mental Health...more

California: Health Care Providers Must Join Statewide Data Sharing Agreement by 2024

Foley & Lardner LLP on 7/26/2022

Many California health care providers, including hospitals and physician groups, will soon be required to sign on to California’s first-ever statewide data sharing agreement governing the exchange of health and social...more

DOH Employee Error Causes Breach Of COVID-19 And Other Health Data Affecting Nearly 165,000 Individuals

Jackson Lewis P.C. on 4/28/2021

In a recent post, we highlighted the need for a privacy and cybersecurity training program, one not solely focused on spotting phishing attempts (although that is quite important as well). A primary reason, quite simply, is...more

Report on Patient Privacy Volume 20, Number 8. Privacy Briefs: August 2020

Health Care Compliance Association (HCCA) on 8/11/2020

Report on Patient Privacy 20, no. 8 (August 2020) - HHS changed its tone on care coordination and case management in the final Confidentiality of Substance Use Disorder Patient Records regulation (42 C.F.R. § 2), known...more

Report on Patient Privacy Volume 20, Number 5. Privacy Briefs: May 2020

Health Care Compliance Association (HCCA) on 5/14/2020

Report on Patient Privacy 20, no 5. (May 2020) - Ambry Genetics, based in Aliso Viejo, California, has reported a data breach involving nearly 233,000 people. In its statement, the company said it identified “unauthorized...more

Coronavirus and Educational Institutions: Guidance for Healthcare Programs and Beyond

Holland & Knight LLP on 3/10/2020

The U.S. Centers for Disease Control and Prevention (CDC) has issued Interim Guidance for Administrators of U.S. Institutions of Higher Education and for K-12 schools and childcare programs, asking them to collaborate and...more

State Health Departments › Health Insurance Portability and Accountability Act (HIPAA)

"My best business intelligence, in one easy email…"