The U.S. Department of Health and Human Services ("HHS"), Office for Civil Rights ("OCR") continues to be actively engaged in investigating and settling alleged HIPAA violations. In advance of Mother's Day, two decisions...more
On November 20, 2023, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced an $80,000 HIPAA settlement with Saint Joseph’s Medical Center (“SJMC”) in New York State. The...more
On September 11, 2023, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement with LA Care related to potential violations of Health Insurance Portability and...more
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement on June 28, 2023 of potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy...more
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently announced two settlements with HIPAA-covered entities – one in Washington State and one in New Jersey with settlements of $240,000...more
Earlier this month, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced two (2) different settlements, one with a HIPAA business associate for $350,000 and one with a...more
The 2021 calendar year reports from HHS OCR describe OCR’s efforts that calendar year and are instructive tools for all parties who need to comply with HIPAA to understand macro-level trends....more
On August 23, 2022, the Office for Civil Rights (OCR) within the U.S. Department of Health and Human Services (HHS) announced a $300,640 settlement and a Corrective Action Plan (“CAP”) with New England Dermatology P.C., d/b/a...more
On March 28, 2022, the United States Department of Health and Human Services (“HHS”), Office for Civil Rights (“OCR”) announced the resolution of three investigations and one matter before an Administrative Law Judge related...more
In the first settlement under the Biden Administration, on February 10th the Office for Civil Rights (“OCR”) at the U.S. Department of Health and Human Services (“HHS”) announced a settlement of a fifteenth enforcement action...more
In one of the final health care-related actions by the Trump Administration, on January 15, 2021, the United States Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced that Excellus Health...more
The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) announced on April 2, 2020 that it will not impose penalties for violations of certain provisions of the HIPAA Privacy Rule against...more
On March 3, 2020, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) announced a $100,000 settlement and corrective action plan with Steven A. Porter, M.D. to resolve potential...more
3/9/2020
/ Business Associates ,
Covered Entities ,
Data Protection ,
Data Security ,
Department of Health and Human Services (HHS) ,
Electronic Medical Records ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
PHI ,
Settlement
On December 11, 2019, the Office for Civil Rights (“OCR”), within the U.S. Department of Health and Human Services , announced a settlement with a covered entity, Korunda Medical, LLC (“Korunda”), to resolve alleged...more
On November 27, 2019, the Office for Civil Rights (OCR) within the U.S. Department of Health and Human Services (HHS), announced a $2.175 million settlement and Corrective Action Plan (CAP) with Sentara Hospitals (Sentara) to...more
On November 7, 2019, the Office for Civil Rights (OCR) within the U.S. Department of Health and Human Services (HHS) imposed a $1.6 million civil money penalty (CMP) against the Texas Health and Human Services Commission (TX...more
On November 5, 2019, the Office for Civil Rights (OCR) within the U.S. Department of Health and Human Services (HHS) announced a $3 million settlement with the University of Rochester Medical Center (URMC) to settle potential...more
On October 2, 2019, the Office for Civil Rights (OCR) within the U.S. Department of Health and Human Services (HHS) announced that it had reached a $10,000 monetary settlement with a Dallas-based dental practice to settle...more
More than 400 dental offices across the United States were the victim of a recent ransomware attack that prevented dentists from accessing patient records and patient personal data. ...more
IBM Security and the Ponemon Institute recently released their 2019 Cost of Data Breach Report (the “Report”). This is the 14th annual report these groups have published. ...more
On May 24, 2019, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), released a new fact sheet describing 10 ways in which a “business associate” can be liable under HIPAA. ...more
On May 23, 2019, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced that Medical Informatics Engineering, Inc. (MIE) agreed to pay $100,000 to settle alleged HIPAA violations that...more
On May 6, 2019, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced that Touchstone Medical Imaging (TMI) agreed to pay $3,000,000 to settle alleged HIPAA violations arising out of...more
On April 26, 2019, the U.S. Department of Health and Human Services (“HHS”) published an Enforcement Discretion letter announcing it is meaningfully lowering the cumulative annual civil money penalties (“CMPs”) it will apply...more
Health care providers are heavily reliant on technology in providing clinical services. The findings from a recent research study highlight the significant threat of cyber risks in health care that is in addition to the...more