Kate Stewart

Kate Stewart

Mintz Levin

Contact  |  View Bio  |  RSS

Latest Posts › HIPAA

Share:

“Your Money or Your PHI”: OCR Releases Guidance on Ransomware

On July 11, 2016, the Office for Civil Rights (OCR) released important new guidance on ransomware for hospitals and other healthcare providers and finally addressed the question of whether electronic protected health...more

7/12/2016 - Breach Notification Rule Covered Entities Cyber Attacks Data Breach Employee Training Hackers Health Care Providers HIPAA HIPAA Breach Hospitals New Guidance OCR PHI Ransomware Security Risk Assessments

Check Your Inbox: OCR Continues to Verify Entity Contact Information for Phase 2 HIPAA Audits

Covered Entities need to continue to check their inboxes for emails from the HHS Office for Civil Rights (“OCR”) requesting verification of contact information in connection with Phase 2 of the HIPAA Audit Program. OCR...more

5/23/2016 - Audits Business Associates Covered Entities HHS HIPAA OCR

Don’t Neglect Your Business Associate Agreements!

As we have repeatedly emphasized on this blog, HIPAA Covered Entities must ensure that they have compliant business associate agreements (“BAAs”) in place with all of their business associates and must ensure that they have...more

3/18/2016 - Business Associates Corrective Actions Covered Entities HIPAA OCR PHI Risk Assessment Settlement

Ransomware Strikes California Hospital – Could You Be Next?

In a chain of events that should be a wake-up call to any entity using and storing critical health information (and indeed, ANY kind of critical information), Hollywood Presbyterian Medical Center (“HPMC”) has announced that...more

2/23/2016 - Electronic Medical Records FBI Hackers HIPAA Hospitals Popular Ransomware

Hollywood Presbyterian Concedes to Hacker’s Demands in Ransomware Attack

In a chain of events that should be a wake-up call to any entity using and storing critical health information, Hollywood Presbyterian Medical Center (“HPMC”) has announced that it paid hackers $17,000 to end a malware attack...more

2/19/2016 - Cyber Attacks Electronic Medical Records Hackers Health Care Providers HIPAA Hospitals OCR Ransomware

Latest OCR Enforcement Action: Underbed Storage is Not Appropriate for PHI

Recent enforcement actions by the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) have highlighted that, not surprisingly, Covered Entities should not leave medical records in a...more

2/5/2016 - HHS HIPAA Home Health Care OCR PHI Privacy Policy

HIPAA and Health Care Data Privacy – 2015 Year in Review

As the year winds down, we look back with a mixture of nostalgia and queasiness on the major Health Insurance Portability and Accountability Act (HIPAA) events that defined 2015. Incredibly large data breaches became...more

12/11/2015 - Anthem Insurance Cyber Attacks Data Breach HIPAA HITECH OCR PHI

Back to School – HIPAA 101

After a summer that saw major data breaches at the Office of Personnel Management and UCLA Health System, this fall is a great time to take your organization back to school on HIPAA compliance and data security. Here are...more

8/27/2015 - Business Associates C-Suite Executives Cybersecurity Data Breach Data Privacy Data Protection Data Security Employee Training HIPAA OCR ONC Security Risk Assessments

ONC Releases Privacy and Security Guidance Geared Toward Small Providers

The HHS Office of the National Coordinator for Health Information Technology (“ONC”) recently released a new and improved version 2.0 of their Guide to Privacy and Security of Electronic Health Information. This revamped...more

5/8/2015 - Business Associates Electronic Medical Records Electronically Stored Information Health Information Technologies HHS HIPAA OCR PHI Security Risk Assessments

HIPAA Settlement Continues to Emphasize the Importance of Security Policies and Procedures

A recently announced settlement between Anchorage Community Mental Health (“ACMHS”) and the U.S. Department of Health & Human Services Office for Civil Rights (“OCR”) emphasizes, once again, the importance of compliance with...more

12/10/2014 - Data Protection Healthcare Facilities HIPAA OCR Patient Privacy Rights PHI Popular Security Rule Settlement

Cliff Notes from the Joint OCR/NIST HIPAA Security Conference

As a service to our readers, we have distilled last week’s joint HHS Office of Civil Rights (OCR) and National Institute of Standards in Technology (NIST) conference, “Safeguarding Health Information: Building Assurance...more

10/1/2014 - Encryption HHS HIPAA NIST OCR Risk Assessment Training

OCR Proposes HIPAA Amendments to Address Gun Violence

As we previously reported, President Obama has made it a priority to improve the National Instant Criminal Background Check System (“NICS”). Last week, more than eight months after the issuance of a advance notice of...more

1/8/2014 - Firearms Gun Laws HIPAA OCR PHI Privacy Rule

HIPAA Omnibus Rule Reference Chart

Mintz Levin is pleased to provide this section-by-section analysis of the HIPAA Omnibus Rule. The chart lists provisions of the proposed privacy, security and enforcement rules mandated by the Health Information...more

1/23/2013 - Business Associates Covered Entities Data Breach Data Protection HIPAA HIPAA Omnibus Rule HITECH Notice Requirements PHI

14 Results
|
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×