News & Analysis as of

Science, Computers & Technology Privacy Health

Read Science, Computers & Technology updates, news, alerts, and legal analysis from leading lawyers and law firms:

ACA’s Nondiscrimination Taglines and Notices Require Updating Your Notice of Privacy Practices

by Davis Wright Tremaine LLP on

There has been confusion as to whether the Affordable Care Act’s nondiscrimination provision (“ACA”) affects a covered entity’s notice of privacy practices (“NPP”) or data breach notifications. OCR has issued guidance...more

Vermont AG Settles with SAManage for $264,000 for Delayed Breach Notification

The Vermont Attorney General (AG) recently announced that it has settled with SAManage USA, a business support services company, for failing to timely notify 660 Vermont residents that their names and Social Security numbers...more

Business Associate Resold Fax Machine Containing PHI

Fax machines are still used in the medical community, and these days, faxing may be more secure than emailing as hackers have not yet cracked the task of hacking into old fax machines. All kidding aside, fax machines have...more

Arkansas Surgery Center Hit with Ransomware

Arkansas Oral & Facial Surgery Center (AOFSC) was recently hit with ransomware that shut down access to health information of its patients and rendered some of it imaging files, including X-rays of patient inaccessible....more

Don’t Forget HIPAA’s “Minimum Necessary” Rule When Making Health Information Disclosures

by Nossaman LLP on

When Covered Entities or Business Associates or their counsel analyze whether a particular disclosure of Protected Health Information (or “PHI,” as defined in HIPAA) is permissible, they should be sure also to analyze whether...more

Health Care E-Note - September 2017

by Burr & Forman on

On June 2, 2017, Anderson, South Carolina-based AnMed Health and the Department of Health and Human Services Office of Inspector General entered into the largest settlement under the Emergency Medical Treatment and Labor Act...more

HIPAA Electronic Certification Rules Withdrawn

Proposed rules issued January 2, 2014 would have required certain health plans (including self-insured health plans) to certify compliance with three of the HIPAA rules relating to electronic transactions. These certification...more

Data Protection: Patient confidentiality in the age of AI

by DLA Piper on

In our previous article, we considered a typical collaboration between a healthcare institution and a developer of an digital diagnostic system using machine learning or some other form of artificial intelligence. The...more

McAfee Report Lists Health Care Sector as Most Targeted Industry for Cyber-Attacks

In its cyber security incident report outlining vulnerabilities for the second quarter of 2017, security firm McAfee lists the health care sector as having suffered the most security incidents, which surpasses the public...more

Digital Diagnosis - AI and machine learning in healthcare

by DLA Piper on

The not too distant future… Janet feels unwell. She consults an app on her phone, which asks an increasingly sophisticated series of diagnostic questions. The app also takes in data from Janet's fitness trackers that...more

Employer-Sponsored Health Plan HIPAA Compliance Checklist

by Davis Wright Tremaine LLP on

The administrative simplification provision of the Health Insurance Portability and Accountability Act and its implementing regulations (HIPAA) impose obligations on employer-sponsored group health plans. Given recent...more

Working Together: FDA Releases Final Guidance on Interoperability

by Hogan Lovells on

On September 6, 2017, the Food and Drug Administration (FDA or the Agency) released its final guidance document, Design Considerations and Pre-Market Submission Recommendations for Interoperable Medical Devices (Final...more

Security Vulnerabilities Identified In Wireless Syringe Infusion Pumps

The U.S. Department of Homeland Security (DHS) recently issued a warning that Smiths Medical Medfusion 4000 wireless syringe infusion pumps contain a security vulnerability that can be exploited by hackers to alter the...more

9 Key Takeaways From the 12th Annual Healthcare Provider Conference

by McGuireWoods LLP on

September 26, 2017 Following are nine key takeaways from the 12th Annual Healthcare Provider Conference held in Charlotte, North Carolina, on September 12, 2017....more

In the Wake of Harvey and Irma, OCR Reminds Providers of HIPAA Rules

As Texas, Florida, and the Caribbean rebuild after the latest string of deadly hurricanes and prepare for the possibility of future storms, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR)...more

Building a Health App? What You Need to Know

Last week, Apple announced the new Apple Watch Series 3 which will feature an enhanced heart rate app. The app will notify you when it detects an elevated heart rate even when you are not working out. The sensor will also be...more

Legal Implications and Initial Takeaways from the Equifax Data Breach

On September 7, Equifax, one of three nationwide credit-reporting agencies that compile and evaluate the financial history of consumers, announced that it suffered a security breach in which sensitive information of...more

Global Privacy & Cybersecurity Update Vol. 15

by Jones Day on

UNITED STATES - Regulatory—Policy, Best Practices, and Standards - FTC Comments on Improvements to IoT Device Security - On June 19, the Federal Trade Commission ("FTC") submitted comments to a working group organized by the...more

The Biggest Health Care Data Breaches in 2017

Health Data Management (HDM), using information compiled by Protenus Breach Barometer, published a list this week of the biggest health care data breaches so far in 2017....more

A Little Help From HIPAA

by McGuireWoods LLP on

HIPAA’s Security Rule requires that Covered Entities perform “periodic” Security Risk Assessments. All too often, however, this regulatory obligation is ignored altogether, performed extremely sporadically, or treated as a...more

Congressional Task Force Issues Report on Cybersecurity in the Health Care Industry

by Polsinelli on

Recently, the Health Care Industry Cybersecurity Task Force (the “Task Force”) issued its Report on Improving Cybersecurity in the Health Care Industry (the “Report”). The Task Force, which was created by Congress as part of...more

FDA Issues Final Guidance For Medical Device Exchange of Patient Information

The Food and Drug Administration (FDA) issued guidance yesterday (September 6, 2017) entitled “Design Considerations and Pre-Market Submission Recommendations for Interoperable Medical Devices,” which is intended to “assist...more

FDA Recalls St. Jude Medical Pacemakers for Cybersecurity Patches

The Food and Drug Administration (FDA) has issued a recall of 465,000 St. Jude Medical pacemakers in order to push a mandatory firmware patch of vulnerabilities in six types of radio controlled cardiac pacemakers....more

Will I Get Sued After a Data Breach? D.C. Circuit Broadens Scope of Data That Gives Rise to Identity Theft in CareFirst

by Orrick - Trust Anchor on

In the latest sign that data breach class actions are here to stay—and, indeed, growing—the D.C. Circuit resuscitated claims against health insurer CareFirst BlueCross and Blue Shield, following a 2015 breach that compromised...more

Enhanced HHS HIPAA Breach Reporting Tool May Aid Health Care Industry Data Security Efforts

by Jackson Lewis P.C. on

Secretary Tom Price of the U.S. Department of Health and Human Services (HHS) announced his agency needs “to focus more on the most recent breaches and clarify when entities have taken action to resolve the issues that might...more

1,977 Results
|
View per page
Page: of 80
Cybersecurity

Follow Science, Computers & Technology Updates on:

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.