Dianne Bourque

Dianne Bourque

Mintz Levin

Contact  |  View Bio  |  RSS

Latest Posts › OCR

Share:

D’oh! OCR Confirms that Medical Records Should Not be Left in the Driveway

The most recent Office for Civil Rights (“OCR”) HIPAA enforcement action serves as an important reminder to health care providers of the security risks associated with a mishandled medical records custody transfer and the...more

6/26/2014 - EHR Healthcare HIPAA OCR PHI

Compliance is No Joke: OCR Releases Security Risk Assessment Tool

On March 28, 2014, the Office of Civil Rights (OCR) announced the release of an online and iPad app-based security risk assessment (SRA) tool. The tool is intended to help health care providers in small to medium sized...more

4/1/2014 - Compliance HIPAA OCR Risk Assessment

En Español: HHS Agencies Issue Model Notices of Privacy Practices in Spanish

Last week, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) and Office for the National Coordinator for Health Information Technology (ONC) issued model Notices of Privacy Practices (NPPs) in...more

2/24/2014 - Disclosure Requirements Healthcare Native Language Notice of Privacy Practices OCR PHI

CMS Finalizes HIPAA and CLIA Amendments Intended to Increase Patient Access to Test Results

Yesterday the Centers for Medicare & Medicaid Services (CMS) finally published the long-awaited final rule amending the Clinical Laboratory Improvement Amendments of 1988 (CLIA) and the Health Insurance Portability and...more

2/5/2014 - CLIA Clinical Laboratories CMS Healthcare HHS HIPAA OCR

A New Year’s Resolution (And Corrective Action Plan) From OCR: Physician Practice Cited For HIPAA Violations

The Office for Civil Rights (OCR) is closing out 2013 with a reminder of the importance of an effective HIPAA compliance program. On December 26, 2013, OCR announced a resolution agreement with a Massachusetts physician...more

12/31/2013 - Breach Notification Rule Data Breach Data Breach Plans Data Protection Electronic Medical Records HIPAA HITECH OCR Physicians

On the First Day of Privacy, The OCR Gave to Me...

Welcome to our series, “The 12 Days of Privacy” as we look to “gifts” that may be received this season and some of the big issues ahead …. Day One – - HIPAA 2014 – Where will the Audit Trail Lead? The year 2013...more

12/9/2013 - HHS HIPAA HITECH OCR OIG Privacy Laws Privacy Policy

OCR Guidance to Address HIPAA Marketing Turmoil

In response to a recent lawsuit and outcry from a variety of players in the health care market, the Department of Health and Human Services (“HHS”) has committed to issuing guidance by September 23rd (the compliance date for...more

9/13/2013 - Compliance Deadlines HHS HIPAA HIPAA Omnibus Rule Marketing OCR

Highlights of the Joint NIST and OCR Safeguarding Health Information Conference

Earlier this week we attended the National Institute of Standards and Technology (NIST) and HHS Office for Civil Rights (OCR) 6th Annual Safeguarding Health Information Conference in Washington, D.C. (the NIST-OCR...more

5/26/2013 - Audits HHS HIPAA NIST OCR

Firearms Debate Triggers OCR Request for Comments

Gun violence is a hot topic in the wake of the Newtown shootings and the aftermath of last week’s Boston Marathon bombings, and now health privacy has joined the debate....more

4/24/2013 - Criminal Background Checks Firearms Gun Laws HIPAA Mental Illness NICS OCR PHI

OCR Wants Feedback From Audited Covered Entities

The Office for Civil Rights (OCR) is preparing to conduct an online survey of the 115 covered entities it audited in 2012 as part of the HITECH-mandated, pilot audit program. OCR hopes to use the survey results to evaluate...more

3/20/2013 - Audits Covered Entities HIPAA HITECH OCR

The New HIPAA Omnibus Rule & Your Liability — A Detailed Review

As we have reported in this blog, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently released final regulations containing modifications to the HIPAA Privacy, Security, Enforcement, and...more

2/18/2013 - Business Associates Cloud Computing Covered Entities Data Breach ERISA Fundraisers HHS HIPAA Omnibus Rule HITECH Marketing Notice Requirements OCR PHI Privacy Rule Risk Assessment Subcontractors Training

Finally! HHS Office of Civil Rights Releases HIPAA Omnibus Rule With Sweeping Changes to Compliance Requirements and Enforcement

The final regulations from Department of Health and Human Services Office of Civil Rights (OCR) containing modifications to the HIPAA Privacy, Security, Enforcement, and Breach Notification Rules (Omnibus Rule) have finally...more

1/18/2013 - Business Associates Compliance Covered Entities Data Breach Data Protection HHS HIPAA HIPAA Omnibus Rule Notice Requirements Notifications OCR Patient Privacy Rights PHI Subcontractors

12 Results
|
View per page
Page: of 1