Health Privacy

Read need-to-know updates, commentary, and analysis on Health issues written by leading professionals.
News & Analysis as of

Blue Shield Avoids TCPA-Related Liability

A federal court in California recently granted a summary judgment motion filed by Blue Shield of California (“Blue Shield”), allowing it to avoid liability for alleged violations of the Telephone Consumer Protection Act...more

Do Routine Calls by Health Plans to Patients and Health Plan Members Constitute “Telemarketing” Under the Telephone Consumer...

Covered entities have a long list of laws and regulations governing their conduct, including their communications with patients, customers, and members. Specifically, the Health Insurance Portability and Accountability Act...more

Vendor Causes Breach of Over 5,000 Patient Records

The continued risk that vendors pose to companies, including health care entities cannot be overemphasized. This week, Sentara Healthcare (Sentara) announced that one of its third-party vendors was the victim of a...more

Health Care Group News: OCR Releases New Clarifying Guidance In Response To Orlando Pulse Nightclub Attack

In an emergency, when there is a flurry of activity in a hospital, covered entities often struggle with who they are permitted to release patient information to under HIPAA. On January 11, 2017, the Department of Health and...more

Washington Supreme Court Expands Physicians’ Duty to Third Parties

Most states have laws either requiring or permitting mental health professionals to disclose information about patients who may become violent. These voluntary or mandatory reporting laws require a balancing of the...more

Enough is Enough: Court Dismisses TCPA Class Action Against A Health Plan That Placed Reminder Calls To Its Members That They...

Plaintiffs across the country have continued to file class actions against companies of all stripe for violation of the Telephone Consumer Protection Act (“TCPA”), often for communications far afield from the classic...more

The Anthem Breach – A Retrospective

Many people and news outlets have opined, weighed in, and informed the public about the 2015 Anthem breach. It is still a hot topic in January 2017, because it currently lines up with other hot stories about hacking ordered...more

What You Need To Know About the FDA’s Guidance on Postmarket Cybersecurity

The FDA released its final Guidance on Postmarket Management of Cybersecurity in Medical Devices during the week between Christmas and New Year. You can link to a full copy here, and we gave you our detailed take on the draft...more

U.S. Military Special Operations Command Workers’ Data Exposed by Vendor

Military personnel continue to be victimized by data breaches. This time, the personal information of healthcare workers employed by Potomac Healthcare Solutions (Potomac), who work for a U.S. Special Operations Command were...more

Patient Records Requests: What You Need to Know [Video]

Our guest on Healthcare Matters is Richard J. Rymond, an attorney at Reminger Co., LPA, who specializes in in medical, dental and other forms of professional, commercial and general liability. He is the Dental Liability...more

Time Waits for No One: OCR Announces First HIPAA Settlement for Lack of Timely Breach Notification

On Jan. 9, 2017, the Department of Health and Human Services Office for Civil Rights (“OCR”) announced the first HIPAA enforcement action for failure to timely report a breach. Often investigating and making formal...more

New Hampshire Psychiatric Hospital Patient Records Posted Online by Former Patient

The New Hampshire Department of Health and Human Services has notified up to 15,000 patients of its psychiatric hospital (New Hampshire Hospital) that their names, addresses, Social Security numbers, Medicaid ID numbers and...more

Failure to Timely Notify Results in Enforcement Action and Significant Settlement

For the first time, on January 9, 2017, the Department of Health and Human Services, Office for Civil Rights (HHS/OCR) settled a HIPAA enforcement action based on the untimely reporting of a breach of unsecured protected...more

Breach of Privacy Prompts Breach of Etiquette: DHHS Sets New Precedent in Privacy Breach Enforcement

On January 9, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) took action against a health system for non-timely reporting of a breach of protected health information. It was the first...more

Joint Commission Confirms Ban on Texting of Patient Care Orders

After briefly considering a reversal of its prohibition on texting orders, The Joint Commission (TJC), in consultation with the Centers for Medicare & Medicaid Services (CMS), announced last month that its ban would continue...more

Time is of the Essence When Reporting a Breach of PHI

The failure to timely report a breach of unsecured protected health information (PHI) has cost Presence Health (one of the largest health systems in Illinois) almost half of a million dollars. Earlier this month,...more

2017 Health Information Privacy and Security New Year’s Resolutions

To start off the New Year, here are some potential health information privacy and security resolutions. You can use these Annual, Quarterly, and Monthly lists to map out your privacy and security tasks for the year, and then...more

Three-Month Delay Means Health Network Must Pay

A delay in reporting a HIPAA violation can result in a significant monetary penalty. That was the message sent by the Office for Civil Rights (OCR), which recently announced the first HIPAA settlement based on the untimely...more

FDA Issues Final Guidance on Postmarket Cybersecurity

Agency establishes a risk-based framework for assessment of postmarket cybersecurity risks for medical devices. On December 28, 2016, FDA issued a final guidance titled “Postmarket Management of Cybersecurity in Medical...more

Medical Marijuana Dispensary Applications Exposed in Cyber Attack

The Nevada Division of Public Health has announced that its Medical Marijuana Program online database has suffered a cyber-attack that has exposed 11,700 applications requesting approval to open a medical marijuana...more

FDA Releases Guidance on Cybersecurity and Medical Devices

The FDA represents the latest federal agency to show a focus on cybersecurity issues with the release December 28 of new guidance. While the prospect of network-enabled medical devices increasingly offers the promise of...more

Can Your Pacemaker Be Hacked?

A famous Homeland episode involved a terrorist gaining access to the Vice-President’s pacemaker. Accessing medical devices to wreak havoc was one of the motivations behind certain provisions of the Digital Millennium...more

Looking Back at the HIPAA Resolution Agreements in 2016

In 2016, Health and Human Services’ (HHS) Office for Civil Rights (OCR), the enforcement arm for HIPAA, continued robust enforcement efforts. There were 12 reported resolution agreements (RA) in 2016. An RA is a settlement...more

Health Care Institutions

Originally published in Haig, Business and Commercial Litigation in Federal Courts, Fourth Edition §§ 87:1 et seq. © 2016 American Bar Association. This chapter discusses federal court litigation relating to health care...more

FDA Guidance on Cybersecurity in Medical Devices

On December 28, 2016, the Food and Drug Administration (FDA) issued guidance on Postmarket Management of Cybersecurity in Medical Devices. The guidance clarified aspects of the reporting requirements under Part 806 (21 CFR...more

2,456 Results
|
View per page
Page: of 99

Follow Health Updates on:

Popular Topics

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×