Rebecca L. Williams

Rebecca L. Williams

Davis Wright Tremaine LLP

Contact  |  View Bio  |  RSS

Latest Posts › PHI

Share:

HIPAA Audit Check-Up – Where We Are and What’s to Come

Phase 2 of the HIPAA audits is fully underway, and covered entities now can take a breath if they have not received a desk audit request. But we still are at the beginning of Phase 2, with more to come. ...more

8/29/2016 - Business Associates Covered Entities HIPAA HIPAA Audits OCR PHI Risk Management

It’s Not the Olympics, but OCR Sets New HIPAA Settlement Records

Athletes at the Rio Olympics aren’t the only ones setting records this year. Hoping to send a “strong message” about the importance of safeguarding electronic protected health information (PHI) and conducting mandated risk...more

8/15/2016 - Business Associates Covered Entities Data Breach HHS HIPAA OCR PHI Risk Management Settlement

On the Trail for Pokémon – and HIPAA Compliance

Pikachu, Alakazam, Bulbasaur, Charmander, and Squirtle can teach us a few things about HIPAA privacy. Pokémon GO is a recent craze encouraging people to try to catch’em all. As a result, employees, clients, and patients are...more

8/11/2016 - Business Associates Covered Entities HIPAA Mobile Devices PHI Pokemon

HIPAA Wake-Up Call for Financial Institutions: First HIPAA Settlement with Business Associate

It’s a HIPAA first. A business associate has settled a direct enforcement action over allegations that it potentially violated the Health Insurance Portability and Accountability Act (HIPAA). This settlement portends future...more

8/3/2016 - Business Associates Covered Entities Data Breach Enforcement Actions Financial Institutions HHS HIPAA OCR PHI Popular Settlement Agreements

Business Associates Beware: First HIPAA Settlement with Business Associate

For the first time, the U.S. Department of Health & Human Services Office for Civil Rights (OCR) has entered into a Resolution Agreement with a business associate over allegations that it potentially violated the Health...more

7/7/2016 - Business Associates HHS HIPAA OCR PHI

HIPAA Enforcement Actions by the Numbers

Protecting patient information is a central duty for both covered entities and business associates under the Health Insurance Portability and Accountability Act (HIPAA). Should a HIPAA-subject entity ever fail to protect...more

6/29/2016 - Breach Notification Rule HHS HIPAA OCR PHI

OCR Phase 2 HIPAA Audits Are Here: What to Expect While You’re Expecting (an Audit)

The Phase 2 audit program for HIPAA compliance is under way. The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced that it had launched the Phase 2 audits to examine and assess how covered...more

3/29/2016 - Breach Notification Rule Business Associates Covered Entities Health Care Providers HIPAA HIPAA Audits HIPAA Breach OCR PHI

HIPAA Audits to Include Financial Institutions—There’s an App for That

The Phase 2 audit program for HIPAA compliance now is underway — and financial institutions are on the list as potential targets. Many financial institutions are business associates under HIPAA, usually because of their...more

3/29/2016 - Covered Entities Financial Institutions HIPAA Audits HIPAA Breach OCR PHI Risk Assessment

February 2016: The Month of Groundhog Day, Super Bowl 50, Valentine’s Day … and HIPAA Breach Notifications

Feb. 29, 2016, a/k/a Leap Day, is the date by which HIPAA covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of “small” breaches of unsecured protected health...more

2/22/2016 - Data Breach Health Care Providers HIPAA OCR PHI Reporting Requirements

Second CMP Assessed for HIPAA Violations: Do You Know Where Your Data Is?

For only the second time in its history, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) has imposed a civil money penalty (CMP) on a covered entity for allegedly violating the HIPAA...more

2/10/2016 - ALJ Civil Monetary Penalty Corporate Counsel Covered Entities HHS HIPAA OCR PHI Privacy Rule

Be Careful with Information Destruction: Another Medical Record Disposal HIPAA Settlement

The U.S. Department of Health and Human Services Office for Civil Rights (“OCR”) recently announced a new settlement with a small pharmacy, Cornell Prescription Pharmacy (“Cornell”). OCR alleged that Cornell was disposing of...more

5/1/2015 - Document Destruction Enforcement Actions OCR Pharmacies PHI Settlement

Latest HIPAA Settlement: Compliance is an Ongoing Process

The U.S. Department of Health and Human Services, Office for Civil Rights (OCR) issued its first settlement under new OCR Director Jocelyn Samuels earlier this month. This latest settlement serves as a reminder that a...more

12/18/2014 - Healthcare Facilities HIPAA OCR Patient Confidentiality Breaches PHI Popular Settlement

Ebola or Not, Patient Privacy Must Be Protected: Office for Civil Rights Issues Bulletin on HIPAA Requirements in Emergency...

In the wake of the recent Ebola cases, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) has issued a new bulletin reminding HIPAA-covered entities and their business associates that the...more

11/13/2014 - Data Protection Ebola EHR Healthcare HHS HIPAA OCR PHI

CMS Reopens the Medicare Payment Adjustment Hardship Exception Application Submission Period for Certain Providers and Hospitals

Centers for Medicare & Medicaid Services (CMS) recently announced the reopening of the submission period for hardship exception applications for eligible professionals and eligible hospitals that have been unable to fully...more

10/30/2014 - CEHRT CMS EHR Healthcare Healthcare Reform Hospitals Medicare PHI Undue Hardship

Good News: California Extends Its Medical Data Breach Notification Requirement From 5 to 15 Days

On Sept. 18, 2014, California’s governor approved Assembly Bill 1755, extending California’s stringent breach notification deadline for medical information breaches from five business days to 15 business days for clinics,...more

10/13/2014 - Breach Notification Rule Data Breach EHR Healthcare Personally Identifiable Information PHI Popular

OCR Releases Information on What Phase 2 HIPAA Audits Will Look Like

The HHS Office for Civil Rights (OCR) recently presented information about the new look of its Phase 2 audit program. The new audits will look little like the old ones, with OCR conducting the audits itself and focusing on...more

4/14/2014 - Audits Data Protection EHR HHS HIPAA OCR PHI

New Omnibus Rule Released: HIPAA Puts on More Weight

On Jan. 17, 2013, the Department of Health and Human Services (HHS) released the long-awaited “Omnibus Rule,” which amends the administrative simplification provisions of the Health Insurance Portability and Accountability...more

1/24/2013 - Business Associates Covered Entities Data Breach Data Protection Enforcement GINA HHS HIPAA HIPAA Omnibus Rule HITECH Marketing PHI Privacy Policy

HIPAA Omnibus Rule Released

At long last, after much delay and speculation, the HIPAA Omnibus Rule has been placed on display at the Federal Register in preparation for formal publication....more

1/18/2013 - Business Associates Compliance Covered Entities Data Breach Enforcement HIPAA HIPAA Omnibus Rule Marketing Notice Requirements PHI

18 Results
|
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×