Kimberly J. Gold

Kimberly J. Gold

Mintz Levin

Contact  |  View Bio  |  RSS

Latest Posts › OCR

Share:

New York Hospitals to Pay Record $4.8 Million for HIPAA Data Breach

In the largest Health Insurance Portability and Accountability Act (HIPAA) settlement to date, two New York hospitals have agreed to pay $4.8 million to settle allegations that they failed to secure thousands of patients’...more

5/13/2014 - Data Breach Electronic Medical Records Healthcare HIPAA Hospitals Non-Judicial Settlement Agreements OCR

No More Excuses: Encrypt Your Laptops or Pay Big $

Two companies were hit with fines equaling a total of almost $2 million to settle alleged Health Insurance Portability and Accountability Act (HIPAA) violations involving stolen, unencrypted laptops, the U.S. Department of...more

4/24/2014 - Data Protection Encryption HHS HIPAA OCR

Data Breach Wall of Shame: 2013's Highlights and Lessons

Since 2009, the HHS Office for Civil Rights (“OCR”) has posted all large data breaches – those that involve 500 or more individuals – online on its so-called “Wall of Shame.” In 2013, 160 large data breaches were reported to...more

1/24/2014 - Cybersecurity Data Breach Data Protection Encryption Healthcare HHS Medical Records OCR Recording Requirements

On the First Day of Privacy, The OCR Gave to Me...

Welcome to our series, “The 12 Days of Privacy” as we look to “gifts” that may be received this season and some of the big issues ahead …. Day One – - HIPAA 2014 – Where will the Audit Trail Lead? The year 2013...more

12/9/2013 - HHS HIPAA HITECH OCR OIG Privacy Laws Privacy Policy

Hearing to Address HIPAA Accounting of Disclosures

The HHS Office of Civil Rights (OCR) announced that the Health Information Technology (HIT) Policy Committee’s Privacy and Security Tiger Team will hold a virtual, public hearing on Monday, September 30 from 11:45 a.m. to...more

9/26/2013 - Business Associates Covered Entities HHS HIPAA HIPAA Omnibus Rule HITECH OCR PHI

OCR Publishes Model Notice of Privacy Practices

With the September 23, 2013 compliance date for the HIPAA Omnibus Rule only one week away, the Office for Civil Rights (OCR) and the Office of the National Coordinator for Health Information Technology (ONC) have developed...more

9/17/2013 - HIPAA HIPAA Omnibus Rule Notice of Privacy Practices Notice Requirements OCR

OCR Publishes HIPAA Guides for Providers and Consumers

Understanding the complexities of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules is often a challenge for health care providers and consumers. Recognizing the widespread...more

5/2/2013 - HIPAA OCR Privacy Policy Security and Privacy Controls

Firearms Debate Triggers OCR Request for Comments

Gun violence is a hot topic in the wake of the Newtown shootings and the aftermath of last week’s Boston Marathon bombings, and now health privacy has joined the debate....more

4/24/2013 - Criminal Background Checks Firearms Gun Laws HIPAA Mental Illness NICS OCR PHI

The New HIPAA Omnibus Rule & Your Liability — A Detailed Review

As we have reported in this blog, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently released final regulations containing modifications to the HIPAA Privacy, Security, Enforcement, and...more

2/18/2013 - Business Associates Cloud Computing Covered Entities Data Breach ERISA Fundraisers HHS HIPAA Omnibus Rule HITECH Marketing Notice Requirements OCR PHI Privacy Rule Risk Assessment Subcontractors Training

OCR Releases Sample Business Associate Agreement Provisions

The Department of Health and Human Services, Office for Civil Rights (OCR) has posted on its website sample business associate agreement provisions to help covered entities and business associates comply with the new business...more

1/28/2013 - Business Associates Covered Entities Data Protection Electronic Medical Records HHS HIPAA HIPAA Omnibus Rule HITECH OCR

Utilizing the HIPAA audit protocols as a compliance tool By Kimberly J. Gold

Originally published in Compliance Today on December 1, 2012. ..Covered entities are now subject to privacy and security audits by OCR. ..OCR published audit protocols regarding its standards for such...more

12/6/2012 - Audits Compliance Healthcare Healthcare Professionals HHS HIPAA OCR

11 Results
|
View per page
Page: of 1