News & Analysis as of

Privacy Health Consumer Protection

Read Privacy Law updates, news, and legal commentary from leading lawyers and law firms:

HIPAA spring check-up: Your obligations to safeguard third-party patient health information in medical records produced in...

You’ve had your apple a day, but you can’t keep the subpoenas away… And, if your organization is facing a request seeking records or other materials that may contain patient health information (“PHI”), it bears...more

HIPAA Settlement With Wireless Health Services Provider Is Less Than Meets The Eye

by King & Spalding on

On April 24, the U.S. Department of Health and Human Services Office for Civil Rights (“OCR”) announced a $2.5 million HIPAA settlement with CardioNet, a wireless health services provider. CardioNet provides remote mobile...more

Are Healthcare Systems Being Held Hostage by Ransomware?

by Revision Legal on

Healthcare ransomware is one of the biggest cybersecurity concerns in existence and it may have particularly serious implications for healthcare systems. Ransomware is a form of malicious software code that is somehow...more

New York Attorney General Announces Settlements with Three Mobile Health Application Developers

by Jones Day on

New York has made a mark on the regulatory and enforcement landscape for mobile health applications ("mobile health app") with the New York Attorney General's ("NY AG") March 23, 2017, announcement of settlements with three...more

New Mexico Enacts Data Breach Notification Law

by King & Spalding on

On April 6, 2017, New Mexico became the 48th state to enact a data breach notification law; the Data Breach Notification Act (the “Act”) will go into effect on June 16, 2017. The good news for many in the health care...more

HHS to Launch Cybersecurity Center

The Department of Health and Human Services (HHS) will soon launch a healthcare focused cybersecurity initiative modeled on the Homeland Security Department’s National Cybersecurity and Communications Integration Center...more

OCR Settlement Lessons - Failing to Perform an Electronic Access Risk Analysis Before an Unauthorized Access Occurs

by Ruder Ware on

Failure to conduct a risk assessment before a hacking incident occurred resulted in a $400,000 settlement between the Office of Civil Rights (OCR) and a Federally Qualified Health Clinic (FQHC). The FQHC filed a breach...more

OCR Announces First HIPAA Settlement with Wireless Health Services Provider

by Morgan Lewis on

The $2.5 million settlement reflects the agency’s focus on mobile health privacy. On April 24, the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement with CardioNet, a...more

Lessons from OCR HIPAA Settlements - Mobile Device Security Standards

by Ruder Ware on

In the first known case involving a wireless provider, a cardiology service provider agreed to pay a $2.5 million settlement based on the impermissible disclosure of unsecured electronic protected health information (ePHI)....more

Recent $2.5 Million OCR Settlement Is a Warning to Wireless Health Service Providers

by McDermott Will & Emery on

On April 24, the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a Health Insurance Portability and Accountability Act of 1996 (HIPAA) settlement in the amount of $2.5 million based on...more

$2.5 Million Settlement Reached as HIPAA Crackdown Continues on Unsecured Portable Devices

by Jones Day on

A recent settlement of $2.5 million for alleged violations of the Health Insurance Portability and Accountability Act ("HIPAA") continues a trend of government enforcement targeting health care providers and vendors that fail...more

Rite Aid Wins Summary Judgment in TCPA Action Involving Prerecorded, Automated Call for Flu Shot Reminder

In an outright win for pharmacies, the U.S. District Court for the Southern District of New York, in the attached opinion, granted Rite Aid’s motion for summary judgment in a class action alleging violations of the TCPA....more

Mobile targeting: A ‘secret weapon’ for good or ill?

by Thompson Coburn LLP on

It’s an advertiser’s dream — the ability to target customers through their mobile devices, right to down to where they are and what they are doing. But can such precisely targeted messages become a recipient’s nightmare?...more

HIPAA and the Cloud’s Shared Responsibility Models

by Snell & Wilmer on

Cloud-based service providers (CSPs), like Amazon Web Services and Microsoft Azure, offer online access to shared computing resources. As such, they have developed a “shared responsibility model” for how CSPs and companies...more

Gone Phishin’: Hack Leads to HIPAA Settlement

Earlier this week, the HHS Office for Civil Rights (“OCR”) announced a $400,000 settlement with Metro Community Provider Network (“MCPN”) related to a 2012 HIPAA breach caused by a phishing scam. The phishing scam, carried...more

Recent HIPAA Privacy and Security Settlements and Lessons Learned

by Perkins Coie on

Although the fate of the Affordable Care Act remains undecided, enforcement of the HIPAA privacy and security regulations by the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services is ongoing,...more

The State AG Report Weekly Update April 6, 2017

by Cozen O'Connor on

Consumer Protection - Delaware and Massachusetts Attorneys General Settle with Auto Lender Over Subprime Loans - Delaware AG Matt Denn and Massachusetts AG Maura Healey reached separate settlements with finance and...more

The TCPA: An Unexpected Deterrent to Patient Engagement Tools

by McDermott Will & Emery on

In an age where providers are increasingly taking the management of their patient’s health online and out of the doctor’s office, the creation of scalable and nimble patient engagement tools can serve to improve patient...more

Your Cyber Minute: Attorney-client privilege in the midst of a cybersecurity breach  [Video]

by Hogan Lovells on

In the wake of a cyber attack, it’s a common assumption that attorney-client privilege is ironclad. It’s not that simple. Partners Harriet Pearson and Michelle Kisloff examine the nuances and offer best practices. ...more

Hey Dentists: No Business Associate Agreement, No Problem

by Ruder Ware on

According to the U.S. Health and Human Services Office for Civil Rights (OCR), dental practices are not required to have a business associate agreement with their dental laboratory before sharing protected health...more

Advice to Healthcare Providers on Ransomware from the Head of the FBI

On Wednesday, March 8, James B. Comey, Director of the FBI, was at Boston College to deliver the keynote address for the inaugural Boston Conference on Cyber Security (BCCS 2017). Director Comey addressed various industry,...more

Privacy and Information Security a Top Priority in California under Xavier Becerra

by Fisher Phillips on

Governor Jerry Brown’s selection of Congressman Xavier Becerra to succeed (now Senator) Kamala Harris as the new Attorney General of California was a surprising move that brings into power in California a seasoned advocate of...more

OCR Releases Guidance on Reporting and Monitoring Cyber Threats

Last week, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) released new guidance on reporting and monitoring cyber threats. The guidance urges covered entities and business associates to...more

Advertising Law - March 2017

FTC Fights Back in LabMD Suit - The Federal Trade Commission demonstrated its intention to fight for the power to regulate data security by filing a 111-page brief with the U.S. Court of Appeals for the Eleventh Circuit...more

Charging for Medical Records Can Cost You

by Roetzel & Andress on

Health care providers often are unaware of federal laws that regulate the process by which they charge patients for copies of medical records. Many providers incorrectly assume that only the law of the state in which the...more

589 Results
|
View per page
Page: of 24
Cybersecurity

Follow Privacy Updates on:

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.

Feedback? Tell us what you think of the new jdsupra.com!