Kimberly J. Gold

Kimberly J. Gold

Mintz Levin

Contact  |  View Bio  |  RSS

Latest Posts › HIPAA

Share:

New York Hospitals to Pay Record $4.8 Million for HIPAA Data Breach

In the largest Health Insurance Portability and Accountability Act (HIPAA) settlement to date, two New York hospitals have agreed to pay $4.8 million to settle allegations that they failed to secure thousands of patients’...more

5/13/2014 - Data Breach Electronic Medical Records Healthcare HIPAA Hospitals Non-Judicial Settlement Agreements OCR

Connecticut Pharmacy Rewards Program Disclosure Bill Could Cause Headaches

The Connecticut State Senate recently passed a bill that would impose additional disclosure and consent requirements on retailers offering pharmacy rewards programs to consumers. If the bill passes the Connecticut House and...more

5/8/2014 - Disclosure Requirements HIPAA Pharmaceutical Pharmacies Rewards Programs

We have seen this movie before ….. and we all should know that it does not end well.

How much is the cost of doing nothing when it comes to encryption of sensitive data? In the case of electronic protected health information, about $2 million. Two companies have been hit with fines equaling a total...more

4/28/2014 - Cybersecurity Data Protection EHR HHS HIPAA PHI

No More Excuses: Encrypt Your Laptops or Pay Big $

Two companies were hit with fines equaling a total of almost $2 million to settle alleged Health Insurance Portability and Accountability Act (HIPAA) violations involving stolen, unencrypted laptops, the U.S. Department of...more

4/24/2014 - Data Protection Encryption HHS HIPAA OCR

Unprecedented HIPAA Fine May Mean Increased Scrutiny and Penalties

Triple-S Management Corp. (“Triple-S”), a Puerto Rico-based health insurer, has been fined $6.8 million by the Puerto Rico Health Insurance Administration (“PRHIA”) following a Health Insurance Portability and Accountability...more

2/26/2014 - Data Breach Data Protection Fines Health Insurance Healthcare HIPAA PHI

On the First Day of Privacy, The OCR Gave to Me...

Welcome to our series, “The 12 Days of Privacy” as we look to “gifts” that may be received this season and some of the big issues ahead …. Day One – - HIPAA 2014 – Where will the Audit Trail Lead? The year 2013...more

12/9/2013 - HHS HIPAA HITECH OCR OIG Privacy Laws Privacy Policy

Hearing to Address HIPAA Accounting of Disclosures

The HHS Office of Civil Rights (OCR) announced that the Health Information Technology (HIT) Policy Committee’s Privacy and Security Tiger Team will hold a virtual, public hearing on Monday, September 30 from 11:45 a.m. to...more

9/26/2013 - Business Associates Covered Entities HHS HIPAA HIPAA Omnibus Rule HITECH OCR PHI

OCR Publishes Model Notice of Privacy Practices

With the September 23, 2013 compliance date for the HIPAA Omnibus Rule only one week away, the Office for Civil Rights (OCR) and the Office of the National Coordinator for Health Information Technology (ONC) have developed...more

9/17/2013 - HIPAA HIPAA Omnibus Rule Notice of Privacy Practices Notice Requirements OCR

OCR Publishes HIPAA Guides for Providers and Consumers

Understanding the complexities of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules is often a challenge for health care providers and consumers. Recognizing the widespread...more

5/2/2013 - HIPAA OCR Privacy Policy Security and Privacy Controls

Firearms Debate Triggers OCR Request for Comments

Gun violence is a hot topic in the wake of the Newtown shootings and the aftermath of last week’s Boston Marathon bombings, and now health privacy has joined the debate....more

4/24/2013 - Criminal Background Checks Firearms Gun Laws HIPAA Mental Illness NICS OCR PHI

OCR Releases Sample Business Associate Agreement Provisions

The Department of Health and Human Services, Office for Civil Rights (OCR) has posted on its website sample business associate agreement provisions to help covered entities and business associates comply with the new business...more

1/28/2013 - Business Associates Covered Entities Data Protection Electronic Medical Records HHS HIPAA HIPAA Omnibus Rule HITECH OCR

HIPAA Omnibus Rule Reference Chart

Mintz Levin is pleased to provide this section-by-section analysis of the HIPAA Omnibus Rule. The chart lists provisions of the proposed privacy, security and enforcement rules mandated by the Health Information...more

1/23/2013 - Business Associates Covered Entities Data Breach Data Protection HIPAA HIPAA Omnibus Rule HITECH Notice Requirements PHI

Utilizing the HIPAA audit protocols as a compliance tool By Kimberly J. Gold

Originally published in Compliance Today on December 1, 2012. ..Covered entities are now subject to privacy and security audits by OCR. ..OCR published audit protocols regarding its standards for such...more

12/6/2012 - Audits Compliance Healthcare Healthcare Professionals HHS HIPAA OCR

13 Results
|
View per page
Page: of 1