Privacy, Consumer Protection, Health Law

FTC Approves Order Settling Data Breach Charges

by BuckleySandler LLP on 5/15/2013

On May 3, the FTC approved a final order settling charges against a California-based cord blood bank firm alleged to have violated the FTC Act by failing to use reasonable and appropriate procedures for handling customers’...more

HHS Empowers Consumers to Know (and Enforce) their Rights Under HIPAA

by Ryan Blaney | Proskauer - Privacy & Data Security on 5/9/2013

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) published on its website a series of factsheets designed to educate consumers unfamiliar with their rights under the Health Insurance...more

Special Edition: Health Law Update - February 28, 2013

by Anne Foster, Cory Fox, Susan Whittaker Hughes, Theodore Kobus III, Jennifer Mills, John Mulhollan, Lynn Sessions, Kimberly M. Wong | BakerHostetler on 3/1/2013

In This Issue: - A Baker's Dozen of Significant Changes From the HIPAA/HITECH Rule 1. Business Associates and Subcontractors 2. Breach Notification 3. Covered Entity Organizational Structures 4. Cloud...more

PHI Breach Reporting Deadline is March 1, 2013

by Thompson Coburn LLP on 2/28/2013

To comply with the HITECH breach notice requirements, HIPAA covered entities are required to report all small breaches of unsecured protected health information (“PHI”) that occurred in calendar year 2012 to the U.S....more

Significant Changes to HIPAA Effective March 26, 2013

by Christie Burbank, Jade Dodds, Susan Steelman | Miller & Martin PLLC on 2/28/2013

The following is a summary of the major changes to HIPAA under the new Final Rule: 1. Breach Notification Standard Lowered — In perhaps the most significant change under the Final Rule, the new regulations considerably...more

Deadline Approaches for Reporting 2012 Small Breaches

by Adam H. Greene, Rebecca L. Williams | Davis Wright Tremaine LLP on 2/26/2013

HIPAA covered entities have through Friday, March 1, 2013, to report small breaches of unsecured protected health information that occurred in calendar year 2012 to the U.S. Department of Health and Human Services (HHS). A...more

HIPAA’s New Rules: Expanding Scope, Clarifying Uncertainties, & Reinforcing Fundamentals

by Patricia Shea | K&L Gates LLP on 2/25/2013

On January 25, 2013, the Secretary for the United States Department of Health and Human Services, Office for Civil Rights (the “Department”) officially published the long-awaited final regulations (the “Final Rule”)...more

Maryland Cybersecurity-Related Legislative Developments

by Michael Baader, Dismas Locaria, Anthony Rosso, Ryan Sweigard | Venable LLP on 2/21/2013

The Maryland State Senate is considering several cybersecurity-related bills to advance the state’s efforts to be the epicenter for cybersecurity. Maryland has already enacted several measures to foster cybersecurity...more

The HITECH Final Rule: The New Privacy/Security Rules of the Road Have Finally Arrived

by Nancy Bonifant, Elizabeth Doyle O'Brien, Jennifer Pike, Zachary Portin, Brad Rostolsky, Salvatore Rotella Jr. | Reed Smith on 2/20/2013

Since the 2009 enactment of the Health Information Technology for Economic and Clinical Health Act (the “Act” or “HITECH Act”), compliance efforts associated with the Health Insurance Portability and Accountability Act of...more

Expanding The Reach Of HIPAA Data Security And Privacy Requirements

by Michael Volkov on 2/18/2013

In this information technology era, it is little wonder that the Obama Administration has made enforcement of data security and privacy protections a top priority. The enforcement emphasis reflects public opinion favoring...more

HIPAA Omnibus Final Rule Imposes New Obligations on Business Associates

by Elizabeth F. Hodge | Akerman Senterfitt on 2/12/2013

On January 25, 2013, the Department of Health and Human Services/Office for Civil Rights (HHS/OCR) published in the Federal Register (78 Fed. Reg. 5566) the long-awaited final rule titled Modifications to the HIPAA Privacy,...more

Blood Bank Settles FTC Complaint About Customer Data Privacy

by Jeff Ifrah on 2/11/2013

Any company that collects personal information about individuals, such as credit card numbers and social security numbers, must be very careful about the way in which it stores and secures that information. Even a blood bank...more

HIPAA Minimum Necessary Standard Should Be Key Component of Policies and Procedures, Now More Than Ever

by Lisa Clark, Elinor Hart | Duane Morris LLP on 2/11/2013

On January 17, 2013, the U.S. Department of Health and Human Services ("HHS") announced the final omnibus rule amending the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") in accordance with the HITECH...more

Business Associates Beware

by Mintz Levin - Privacy & Security on 2/11/2013

If you haven’t yet caught up with the new HIPAA Omnibus Rule and its consequences for those businesses who are not themselves healthcare providers, but are service providers to healthcare entities (and even further downstream...more

New HIPAA Regulations Affect Business Associates and Subcontractors

by Amy Gordon, Susan M. Nash, Jamie Weyeneth | McDermott Will & Emery on 2/11/2013

The Health Insurance Portability and Accountability Act omnibus regulations recently released by the U.S. Department of Health and Human Services have significant ramifications for business associates and subcontractors of...more

Health Law: Hospice pays $50,000 for Failing to Conduct HIPAA Security Risk Assessment; Inadequate Security Policies

by Susan J. Freed | Davis Brown Law Firm on 2/11/2013

A small non-profit hospice in Idaho agreed to pay $50,000 to settle allegations that it violated the HIPAA security regulations. The allegations stemmed from a report made to HHS by the hospice after a laptop containing...more

Cord Blood Bank Settles FTC Charges that it Failed to Protect Consumers’ Sensitive Personal Information

by King & Spalding on 2/5/2013

On January 28, 2013, CBR Systems, Inc. (CBR) agreed to settle FTC charges that it failed to protect its customers’ personal information, including nearly 300,000 customers’ Social Security numbers and credit and debit card...more

Final HIPAA Rule Has Sweeping Impact on Covered Entities and Business Associates

by Katten Muchin Rosenman LLP on 1/30/2013

On January 25, 2013, the Department of Health and Human Services (HHS) published the highly anticipated Health Insurance Portability and Accountability Act (HIPAA) Omnibus Final Rule (the “Final Rule”). The Final Rule...more

Enough Already: Encrypt Those Portable Devices

by Tim Banks | Dentons on 1/30/2013

The U.S. Federal Trade Commission (FTC) announced on Data Privacy Day (January 28) that it had reached a settlement with a cord blood bank in respect of the loss of nearly 300,000 customers’ personal information. The lost...more

Overview of 2013 Amendments to HIPAA Privacy, Security, Breach Notification and Enforcement Rules

by Neville M. Bilimoria, Lisa Clark, Erin Duffy, David Loder, Emmy Monahan, Harry Silver, Dmitry Tuchinsky | Duane Morris LLP on 1/30/2013

On January 17, 2013, the federal Department of Health and Human Services ("HHS"), Office for Civil Rights ("OCR"), issued the long-anticipated final omnibus amendments (the "2013 Amendments") to the Privacy, Security, Breach...more

The Omnibus Final HIPAA Rule Is Here

by Henry Fader, Sharon Klein, Rebekah Monson | Pepper Hamilton LLP on 1/29/2013

On January 17, 2013, the Office of Civil Rights of the U.S. Department of Health and Human Services (HHS) announced the omnibus final rulemaking (Omnibus Rule). According to HHS, this Omnibus Rule is needed to strengthen...more

HHS Issues HIPAA/HITECH Omnibus Final Rule Ushering in Significant Changes to Existing Regulations

by Stacy H. Barrow, Ryan Blaney, Roger Cohen, Herschel Goldfield, Edward Kornreich, Kristen Mathews, Ellen Moskowitz, Richard Zall | Proskauer Rose LLP on 1/29/2013

"Sweeping changes" is how Leon Rodriquez, of the Department of Health and Human Services Office of Civil Rights (OCR), characterized the effect of the final omnibus Health Insurance Portability and Accountability Act (HIPAA)...more

HHS Issues New HIPAA Rules

by BuckleySandler LLP on 1/28/2013

On January 17, the Department of Health and Human Services (HHS) issued a new rule under the Health Insurance Portability and Accountability Act (HIPAA). The omnibus rule is intended to enhance patient privacy protections,...more

New HIPAA Breach Notification Rule May Prove Costly for HIPAA-Covered Entities

by Lisa Clark, Erin Duffy | Duane Morris LLP on 1/28/2013

On January 17, 2013, the U.S. Department of Health and Human Services (HHS) announced a final omnibus rule amending the Health Insurance Portability and Accountability Act of 1996 (HIPAA) in accordance with the HITECH Act of...more

OCR Releases Sample Business Associate Agreement Provisions

by Kimberly J. Gold | Mintz Levin - Health Law on 1/28/2013

The Department of Health and Human Services, Office for Civil Rights (OCR) has posted on its website sample business associate agreement provisions to help covered entities and business associates comply with the new business...more

Home

Legal News

Find a Lawyer

Browse Subjects

Subscribe

Pro Services

For Reporters

Privacy › Consumer Protection › Health Law