Lynn Sessions

Lynn Sessions

BakerHostetler

Contact  |  View Bio  |  RSS

Latest Posts › PHI

Share:

Health System Pays $800,000 Fine for Leaving PHI in Doctor’s Driveway

While enforcement activity by the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has focused primarily on a covered entity’s safeguard of electronic protected health information (ePHI),...more

6/27/2014 - Enforcement HHS HIPAA Medical Records OCR PHI

Proposed $6.8M Fine Related to Puerto Rico Breach Incident

Triple-S Salud, Inc. (“Triple-S”), a Puerto Rico Health Insurance Administration (“PRHIA”) contractor, filed a Form 8-K indicating that the PRHIA intended to impose a civil monetary penalty of $6,768,000 and other...more

3/7/2014 - Data Breach EHR Fines Form 8-K Healthcare Medicare PHI

HHS Rule Grants Patients Direct Access to Lab Test Results

The U.S. Department of Health and Human Services (HHS) recently published a Final Rule granting patients and their personal representatives access to the patient’s completed laboratory test reports directly from the lab...more

2/24/2014 - CDC CLIA CMS EHR Healthcare HHS HIPAA PHI

Healthcare Privacy – 2013 Year in Review

On January 25, 2013, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) published the long-awaited HIPAA Omnibus Final Rule (Final Rule), which includes the most sweeping changes to HIPAA...more

1/3/2014 - Civil Monetary Penalty EHR Healthcare HHS HIPAA HIPAA Omnibus Rule OCR PHI Privacy Laws Subcontractors

Texas to Launch Nation's First Privacy and Security Certification "Safe Harbor"

The Texas Health Services Authority (THSA) recently announced its selection of the Health Information Trust Alliance (HITRUST) Common Security Framework (CSF), the most widely adopted information privacy and security...more

12/19/2013 - Certifications Data Protection HHS HIPAA PHI Safe Harbors

Business Associate Agreements: More Readily Accepted by Cloud Service Providers? Maybe

Although the HIPAA Omnibus Final Rule's expansion of business associate liability could create difficulties for healthcare providers and other covered entities seeking to negotiate business associate agreements with vendors...more

6/21/2013 - Amazon Business Associates Cloud Computing Data Protection Health HHS HIPAA HIPAA Omnibus Rule PHI

HHS Considers Amending HIPAA Privacy Rule to Permit Disclosure of Mental Health Information for Firearm Background Checks

Adding yet another wrinkle to the nation’s contentious gun control debate, the U.S. Department of Health and Human Services (HHS) has released an Advance Notice of Proposed Rulemaking (ANPRM) soliciting information and public...more

5/8/2013 - Background Checks Data Protection Firearms Gun Laws HHS HIPAA Mental Illness PHI

HIPAA/HITECH Final Rule - Assessing Your Organization's Compliance Readiness

The long awaited HIPAA/HITECH Final Rule became effective March 26, 2013, but covered entities, business associates and subcontractors will have until September 23, 2013, to fully comply. ...more

4/12/2013 - Business Associates Covered Entities Data Protection HIPAA HIPAA Omnibus Rule HITECH PHI

Can Covered Entities Utilize Text Messaging and Text Paging Without Violating HIPAA?

Text messaging allows healthcare providers to deliver simple, relevant, and customizable health information instantaneously to their patients, like reminders to obtain a vaccine, take a medication or come to an important...more

3/11/2013 - Data Protection HIPAA PHI Texting

Special Edition: Health Law Update - February 28, 2013

In This Issue: - A Baker's Dozen of Significant Changes From the HIPAA/HITECH Rule 1. Business Associates and Subcontractors 2. Breach Notification 3. Covered Entity Organizational Structures 4. Cloud...more

3/1/2013 - Business Associates Cloud Computing Covered Entities Data Breach Data Protection GINA HHS HIPAA HIPAA Omnibus Rule HITECH Notice Requirements OCR PHI Subcontractors

OCR'S Breach Settlement: The First Ever Involving Less Than 500 Patients

The HHS Office for Civil Rights (OCR) started 2013 with a bang by announcing that it had reached "the first settlement involving a breach of unprotected electronic protected health information (ePHI) affecting fewer than 500...more

1/21/2013 - Compliance Data Breach Data Protection Electronic Medical Records Encryption HHS HIPAA HITECH HONI Mobile Devices OCR Patient Confidentiality Breaches PHI Settlement

Reminder Annual OCR Breach Reporting is Due March 1, 2013

The breach notification interim final rule requires covered entities to submit to the Office for Civil Rights (OCR) notice of breaches of unsecured protected health information (PHI) (45 C.F.R. 164.408) by March 1, 2013....more

1/2/2013 - Data Breach Health Information Technologies HIPAA HITECH OCR PHI Reporting Requirements

12 Results
|
View per page
Page: of 1