Adam H. Greene

Adam H. Greene

Davis Wright Tremaine LLP

Contact  |  View Bio  |  RSS

Latest Posts › HIPAA

Share:

Tennessee Gives Businesses 45 Days for Data Breach Notice

Recent amendments to the State’s data breach statute give a hard deadline for a business to provide consumer notice, removes encryption safe harbor, exempts entities that are subject to the Health Insurance Portability and...more

4/21/2016 - Cyber Attacks Cybersecurity Data Breach Encryption Gramm-Leach-Blilely Act HIPAA HITECH Incident Response Plans New Legislation Notification Requirements Personally Identifiable Information Safe Harbors

The Audit Protocol is Released, and Other Updated HIPAA Audits News

As we previously reported, the HHS Office for Civil Rights (OCR) launched Phase II of its audit program on March 21. Since that time, a significant amount of new information has emerged, including details regarding the...more

4/12/2016 - Business Associates Covered Entities HHS HIPAA HIPAA Audits OCR

OCR Phase 2 HIPAA Audits Are Here: What to Expect While You’re Expecting (an Audit)

The Phase 2 audit program for HIPAA compliance is under way. The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced that it had launched the Phase 2 audits to examine and assess how covered...more

3/29/2016 - Breach Notification Rule Business Associates Covered Entities Health Care Providers HIPAA HIPAA Audits HIPAA Breach OCR PHI

One Step Forward and Two Steps Back: Proposed Changes to the Alcohol and Drug Abuse Treatment Confidentiality Rule

On Feb. 9, 2016, the U.S. Department of Health and Human Services Substance Abuse and Mental Health Services Administration (SAMHSA) published in the Federal Register a proposed rule putting forth amendments to the Alcohol...more

2/16/2016 - Confidential Documents Drug & Alcohol Abuse Health Care Providers HIPAA Medical Records Privacy Rule SAMHSA

Second CMP Assessed for HIPAA Violations: Do You Know Where Your Data Is?

For only the second time in its history, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) has imposed a civil money penalty (CMP) on a covered entity for allegedly violating the HIPAA...more

2/10/2016 - ALJ Civil Monetary Penalty Corporate Counsel Covered Entities HHS HIPAA OCR PHI Privacy Rule

As if a 20-Year Consent Order Wasn’t Enough Fun: FTC Brings First Monetary Settlement in Information Security Case

The FTC reached a $250,000 settlement with a 20-year consent order with Henry Schein Practice Solutions, Inc. over its use of allegedly subpar encryption technology in its offering to dental practices. This settlement is...more

1/7/2016 - Data Breach Encryption FTC HIPAA NIST Settlement

You Can’t Take It with You – NY Attorney General Reaches Settlement over Exiting Clinician Taking Patient List

It may not be a big dollar amount ($15,000), but a recent New York Attorney General settlement represents a big issue—interpreting that HIPAA prohibits a health care professional who is changing practices from taking a...more

12/15/2015 - Attorney Generals Continuity of Care Health Care Providers HIPAA Nurse Practitioners Patient Privacy Rights

Confusion Continues Over Medical Identity Theft Victim Rights under HIPAA

In a Nov. 10, 2015 letter, the Chairs and Ranking Members of the Senate Committee on Health, Education, Labor, and Pensions and the Committee on Finance raised concerns with the U.S. Department of Health and Human Services...more

12/2/2015 - HHS HIPAA Identity Theft Medical Records Personally Identifiable Information Popular

Are Attorneys Entitled to “HIPAA Rate”?

Over the past year, numerous lawsuits and complaints to the HHS Office for Civil Rights (“OCR”) have been filed by plaintiffs’ attorneys over a seemingly obscure HIPAA issue – the rate that health care providers and their...more

11/6/2015 - Fees FOIA Health Care Providers Healthcare HHS HIPAA Medical Records OCR Privacy Rule Release of Information

[Webinar] Mobile Device Management for Health Care Organizations and Vendors - Sept. 10th, 10:00am PDT

In this webinar, we will demystify the HIPAA Security Rule and how to apply the administrative, physical, and technical safeguards in a mobile environment. We will discuss key takeaways from the recently released NIST Draft...more

9/4/2015 - Data Breach Data Protection Data Security Electronic Medical Records HIPAA mHealth Mobile Apps Mobile Devices NIST Patient Privacy Rights Popular Webinars

Employers: What the Anthem Breach Means to You

On Feb. 4, 2015, Anthem announced a data breach involving the personal information of more than 80 million individuals resulting from what it characterized as a sophisticated, targeted cyber-attack. Group health plans may be...more

2/10/2015 - Anthem Insurance Best Practices Breach Notification Rule Corporate Counsel Cyber Attacks Cybersecurity HIPAA Personally Identifiable Information

Latest HIPAA Settlement: Compliance is an Ongoing Process

The U.S. Department of Health and Human Services, Office for Civil Rights (OCR) issued its first settlement under new OCR Director Jocelyn Samuels earlier this month. This latest settlement serves as a reminder that a...more

12/18/2014 - Healthcare Facilities HIPAA OCR Patient Confidentiality Breaches PHI Popular Settlement

Ebola or Not, Patient Privacy Must Be Protected: Office for Civil Rights Issues Bulletin on HIPAA Requirements in Emergency...

In the wake of the recent Ebola cases, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) has issued a new bulletin reminding HIPAA-covered entities and their business associates that the...more

11/13/2014 - Data Protection Ebola EHR Healthcare HHS HIPAA OCR PHI

Starting Oct. 6, Patients Can Access Test Reports Directly From Clinical Laboratories

On Oct. 6, 2014, a final rule issued jointly by the Centers for Medicare & Medicaid Services (CMS), Centers for Disease Control and Prevention (CDC), and Office for Civil Rights (OCR) will require all HIPAA-covered labs...more

10/2/2014 - CDC Clinical Laboratories CMS EHR Healthcare HIPAA OCR PHI Popular

Looming HIPAA Deadline: Update Business Associate Agreements by Monday, September 22, 2014

Business associate agreements that have not already been updated as required by the HIPAA Omnibus Rule should be updated by September 22, 2014. The Omnibus Rule changed and added mandatory language for valid business...more

9/23/2014 - Business Associates Deadlines HIPAA HIPAA Omnibus Rule

Rhode Island Hospital’s Breach of Health Information Leads to Settlement with Massachusetts Attorney General

On July 23, 2014, the Massachusetts attorney general announced a settlement with Women & Infants Hospital of Rhode Island (WIH) over the loss of unencrypted backup tapes. WIH agreed to pay $150,000 and undertake numerous...more

8/6/2014 - Data Protection EHR HIPAA Hospitals PHI Settlement

$4.8 Million – Largest HIPAA Settlement to Date

On May 7, 2014, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) issued a press release announcing that two health care organizations—New York and Presbyterian Hospital (“NYP”) and Columbia...more

5/9/2014 - Covered Entities Data Breach Electronic Medical Records HIPAA Hospitals Non-Judicial Settlement Agreements OCR Patient Confidentiality Breaches

OCR Releases Information on What Phase 2 HIPAA Audits Will Look Like

The HHS Office for Civil Rights (OCR) recently presented information about the new look of its Phase 2 audit program. The new audits will look little like the old ones, with OCR conducting the audits itself and focusing on...more

4/14/2014 - Audits Data Protection EHR HHS HIPAA OCR PHI

HIPAA and Mental Health Information: HHS Issues HIPAA Guidance Addressing Mental Health Information

The U.S. Department of Health and Human Services (“HHS”) recently issued new guidance clarifying how the HIPAA Privacy Rule strikes the balance of protecting individuals’ privacy of mental health information and communicating...more

2/28/2014 - Healthcare HHS HIPAA Mental Health Mental Health Parity Rule Mental Illness

It’s Not Enough to Notify: Don’t Forget the Policies, Risk Analyses, and Training

HIPAA compliance ended with a bang in 2013, with the feds issuing the first settlement involving a health provider’s failure to have breach notification policies and procedures in place. On Dec. 24, 2013, the Department of...more

1/8/2014 - Compliance HHS HIPAA OCR Security Rule Training

HHS Issues Model Privacy Notices: The Good, the Bad, and the Ugly

Just in time for the September 23, 2013, deadline for compliance with the HIPAA Omnibus Rule, the U.S. Department of Health and Human Services (“HHS”) issued a set of model notices of privacy practices for health care...more

10/2/2013 - HHS HIPAA HIPAA Omnibus Rule Notice of Privacy Practices Notice Requirements

HHS Delays Require Changes to Notice of Privacy Practices for Certain Clinical Laboratories

Last week the Department of Health and Human Services (“HHS”) announced that it has postponed the Sept. 23, 2013, HIPAA Omnibus Rule deadline for many clinical laboratories to revise their notices of privacy practices...more

9/26/2013 - Clinical Laboratories HHS HIPAA HIPAA Omnibus Rule Notice of Privacy Practices

FTC Files Complaint Against Lab Over Failed Health Information Security

In a reminder that the U.S. Department of Health and Human Services (“HHS”), with its HIPAA security requirements and enforcement authority, is not the only game in town when it comes to health information privacy, the...more

9/19/2013 - Clinical Laboratories Confidential Information Data Protection FTC HHS HIPAA PHI

Under HIPAA, You Have the Right to Remain Silent

Last week a regional California medical center entered a $275,000 settlement for disclosing patient information to the media, spotlighting HIPAA’s tight reign over covered health providers even when they try to defend their...more

6/19/2013 - Corrective Actions Disclosure HIPAA Media OCR PHI Settlement

HHS Releases HIPAA Regulations with Updates Incorporating Omnibus Rule Changes

In January 2013, The U.S. Department of Health and Human Services released the HIPAA Omnibus Rule in the Federal Register, the most significant changes to the HIPAA regulations since they were first promulgated. ...more

6/14/2013 - Data Protection HHS HIPAA HIPAA Omnibus Rule

33 Results
|
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×