Privacy Consumer Protection Health

Read Privacy Law updates, news, and legal commentary from leading lawyers and law firms:
News & Analysis as of

Another Health Plan Hit By Massive CyberAttack and Class Actions Follow

Coming fresh off the heels of the Anthem data breach Premera Blue Cross announced on March 17th that it was the victim of a “sophisticated” cyberattack that may have exposed the personal information of approximately 11...more

HIPAA Breach Affects Many Western New York School Districts

Recently, a national BlueCross BlueShield affiliate, Anthem, Inc., discovered that its information technology systems was hacked. The information believed to have been accessed includes names, member ID numbers, dates of...more

Locke Lord QuickStudy: Montana and Wyoming Update Data Breach Laws

Montana and Wyoming have recently revised their data breach notification laws including their definitions of what constitutes Personally Identifiable Information (PII) subject to breach notification. ...more

Health Update - March 2015

Supporting Informed Decision Making in the Health Insurance Marketplace: A Progress Report - Editor’s note: As Affordable Care Act (ACA) implementation moves forward and the marketplace continues to evolve, there is a...more

OCR’s Enforcement of HIPAA’s Privacy and Security Rules Continues with Robust 2014

With the news of the recent cyber-attack and resulting data breach at health insurance giant Anthem Inc., the buzz around data security and privacy is again high. The Anthem breach serves as a reminder to those entities...more

Premera Blue Cross Targeted by Hackers – 11 Million Individuals Compromised

Premera Blue Cross (“Premera”) announced this week that it has been the target of a sophisticated cybersecurity attack in which the information of approximately 11 million individuals has been compromised. This announcement...more

Lessons Learned from Recent Data Security Breaches, Part Two

Because controlling access is essential to protecting privacy of PHI under HIPAA, the HITECH Security Rule essentially requires that a covered entity control physical and electronic access to the data system by implementing...more

State Legislatures React To Latest Health Data Breaches By Updating State Data Breach Notification Laws And Encryption...

Recent, large-scale breaches of health information have served to highlight the fact that federal agencies have only rarely assessed penalties against companies as a result of these breaches, while many states do not have...more

Premera Cyber-Attack Announced: Defining Your Obligations as an Employer

On March 17, 2015, Premera announced a data breach involving the personal information of more than 11 million individuals resulting from what it characterized as a sophisticated, targeted cyber-attack. Employers and plan...more

Montana Tweaks Data Breach Statute

The Big Sky Country’s data breach statute is going to see some small changes come October. On Feb. 27, 2015 Montana Governor Steve Bullock signed H.B. 74 into law, amending the state’s data breach notification statute. Among...more

Blog: Another Large Scale Data Breach Announced by Premera Blue Cross

Premera Blue Cross revealed Tuesday it was hit by a sophisticated cyber attack potentially exposing personal data for approximately 11 million of its members including members, employees and others with whom it does business,...more

Health Law Alert: Top 10 Takeaways from Alessandra Swanson & MSBA HIPAA Discussion

On Feb. 13, the Health Law Section of the Minnesota State Bar Association (MSBA) sponsored an event on HIPAA enforcement in 2015. The MSBA hosted Alessandra Swanson of the Office for Civil Rights, U.S. Department of Health &...more

New York Attorney General and Credit Bureaus Reach Deal Affecting Furnishers of Information to Credit Bureaus

The New York Attorney General announced a settlement with credit bureaus Equifax, Experian and TransUnion regarding credit reporting policies and practices, including methods of addressing inaccuracies identified by...more

Anthem Data Breach Requires Plan Sponsor Attention

On January 29, 2015, Anthem Inc., one of the largest managed health care companies in the country, disclosed that the sensitive personal data of almost 80 million current and former participants in its network was breached in...more

Lessons Learned from the Anthem Cyber-Attack and Corresponding “HIPAA Actions”

Anthem Inc. (“Anthem”), the nation's second-largest health insurer, disclosed on Wednesday, February 4, 2015, that it was the victim of a major cyber-attack. According to Anthem, the attack exposed personal information of...more

State Data Breach Notification Law Updates

State legislatures are not waiting for Congressional action on a national data breach notification standard. Montana — Montana has amended its 10-year old breach notification law (see Mintz Matrix) to expand the...more

Wyoming Amends State Consumer Protection Act

On March 2, the Wyoming legislature passed S.F. 35 and S.F. 36, which amend the state’s Consumer Protection Act to enhance privacy protections for sensitive personal information....more

Big Data Creates New Opportunities for Health Care Entities

Big Data — the ability to collect, process, and interpret massive amounts of information — has reached health care. Technology has created new business opportunities for health care entities — covered entities, business...more

Consumer Health Information Update from Both Sides of the Atlantic

As we reported in May 2014, the Federal Trade Commission (FTC) convened stakeholders to explore whether health-related information collected from and about consumers — known as consumer-generated health information (CHI) —...more

Tapping Into the Big Value of Health Care Big Data

In This Issue: - Executive Summary - Improving Care by Tapping Into the Data Goldmine - Big Opportunities Available in Big Data - Government Programs Supporting the Use of Big Data -...more

“Bring Your Own Device” To Work Programs: Regulatory and Legal Risks and How To Minimize Them

If you’ve ever left your mobile phone on an airplane, in a restaurant, or somewhere other than in your possession, you know it’s frightening enough to think of losing the device itself, which costs a premium, as well as your...more

UK Information Commissioner’s Office (ICO) Receives Power to Audit National Health Service

The ICO has welcomed a change in legislation which came into effect on 1 February 2015 enabling it to audit National Health Service (NHS) bodies to check for compliance with the UK Data Protection Act 1998. ...more

Office of Civil Rights Delays Phase 2 Audits

The Office of Civil RIghts (“OCR”) recently announced that Phase 2 of the HIPAA audits would be further delayed because the audit portals and project management tools that are needed to initiate the audit process are not...more

Also In the News - Data, Privacy, & Security Practice Report - February 2015 #3

White House Holds Summit On Cybersecurity And Consumer Protection — On February 13, 2015, leaders from throughout the country representing sectors with a stake in cybersecurity and consumer protection issues convened at...more

HIPAA Compliant Technology and the Importance of Encryption

We welcome this guest blog by Gene Fry, Compliance Officer, Scrypt, Inc. The Health Insurance Portability and Accountability Act (HIPAA) sets the standard for protecting sensitive patient data. This means that any...more

262 Results
|
View per page
Page: of 11

Follow Privacy Updates on: