News & Analysis as of

Corrective Actions

Gone Phishin’: Hack Leads to HIPAA Settlement

While your business may indeed be a “victim” when hit by a phishing attack, your enterprise can also be responsible for violations of law associated with the incident. Earlier this week, the HHS Office for Civil Rights...more

FICA Taxes and Administrative Traps for Employers

by Sullivan & Worcester on

The nuances of the Social Security and Medicare tax system – collectively FICA taxes – continue to confound and increase the potential liability of employers who are not well versed in this area....more

[Webinar] Government Contracts – Government Agency Corrective Actions and How to Deal With Them – April 26th, 12:00pm CST

by Thompson Coburn LLP on

Government agencies often take corrective action in response to bid protests rather than defend their contract award decision. This webinar will examine why agencies make corrective action decisions, what corrective actions...more

February 2017 Protest Roundup

In February 2017, the Government Accountability Office (GAO) publicly released notable decisions addressing (1) the effect of the temporary lapse in GAO’s civilian task order jurisdiction; (2) discussions, clarifications, and...more

Keurig Settlement An Expensive Reminder About Product Defect Reporting Obligations

The United States Consumer Product Safety Commission (CPSC) recently announced a $5.8 million agreement with Keurig Green Mountain, Inc. settling claims that Keurig failed to report a product defect that posed an unreasonable...more

Laws and Regulations Affecting Government Contractors

by Polsinelli on

Government contractors wondering whether and when they can protest military and civilian task and delivery orders should be aware of recent changes in the law affecting a party’s right to protest before the General...more

$5.5 Million HIPAA Settlement Underscores Importance of Audit Controls

On February 16, 2017, the HHS Office for Civil Rights (OCR) disclosed a $5.5 million settlement with Memorial Healthcare Systems (MHS) for HIPAA violations affecting the protected health information (PHI) of 115,143...more

$5.5 Million HIPAA Settlement Matches Largest Payment To-Date

by Saul Ewing LLP on

On February 16, 2017, the U.S. Department for Health and Human Services (“HHS”), Office for Civil Rights (“OCR”) announced that Memorial Healthcare Systems of Florida (“MHS”) agreed to pay $5.5 million and enter into a...more

Want to Know Why Memorial Healthcare Systems Is Paying HHS OCR $5.5 Million?

On February 16, 2017, HHS OCR announced that Memorial Healthcare Systems (MHS) had paid the U.S. Department of Health and Human Services (HHS) $5.5 million to settle potential violations of HIPAA’s Privacy and Security Rules...more

403(b) Remedial Amendment Deadline Finally Set

by Seyfarth Shaw LLP on

On January 13, 2017, the IRS issued guidance setting March 31, 2020 as the last day of the remedial amendment period for 403(b) retirement plans. A remedial amendment period is a time frame during which an employer can...more

HHS Reaches $2.2 Million Settlement With Life Insurance Company For Impermissible Disclosure Of ePHI

by King & Spalding on

On January 18, the U.S. Department of Health and Human Services, Office for Civil Rights (“HHS OCR”) announced that it had agreed to a $2.2 million settlement with MAPFRE Life Assurance Company of Puerto Rico (“MAPFRE Life”),...more

OCR settles with MAPFRE for $2.2 Million

MAPFRE Life Assurance Company of Puerto Rico learned the hard way about the risk of loss of patient information with portable devices like USBs, even when they are stored in the IT Department....more

Time is Money: HIPAA Enforcement Action for Untimely Breach Notice Settles for $475,000

by Snell & Wilmer on

Many New Year’s Resolutions focus on actions intended to save money and reduce stress. Organizations, especially those in the health care industry, should consider a resolution to review their breach notification procedures...more

Breach of Privacy Prompts Breach of Etiquette: DHHS Sets New Precedent in Privacy Breach Enforcement

by Faegre Baker Daniels on

On January 9, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) took action against a health system for non-timely reporting of a breach of protected health information. It was the first...more

Time is of the Essence When Reporting a Breach of PHI

The failure to timely report a breach of unsecured protected health information (PHI) has cost Presence Health (one of the largest health systems in Illinois) almost half of a million dollars. Earlier this month,...more

Insight from CFPB Regarding Employee Incentives in the Wake of Wells Fargo Consent Order

This past November, in the wake of the Wells Fargo debacle, the CFPB issued a Compliance Bulletin which addressed employee incentives and the consumer risks associated with them. CFPB Compliance Bulletins are non-binding...more

FCC Settles Largest Lifeline Enforcement Case for $30 million and Permanent Ban from the Program

by Davis Wright Tremaine LLP on

We reported last spring on the FCC’s accusations against Total Call Mobile and proposed fine of more than $51 million relating to agent misconduct and the failure of company management to take sufficient and early corrective...more

Make Sure You Address Compliance with Export Controls

by Michael Volkov on

Compliance officers have to avoid professional myopia. The focus of compliance these days has been on anti-corruption, antitrust, and AML, depending on your company’s industry. They fit nicely together under an...more

Court Grants Challenge to Agency’s Corrective Action in Response to Protest

by PilieroMazza PLLC on

A recent court decision may provide other disappointed offerors a pathway for challenging agencies’ corrective action that unreasonably favors the original contract awardee. In Professional Service Industries, Inc. v. U.S.,...more

UMass Amherst Settles HIPAA Violations with OCR for $650,000

The Office for Civil Rights (OCR) has announced that the University of Massachusetts Amherst (UMass) has agreed to settle an investigation against it as a result of a malware infection for $650,000, along with implementing a...more

Court of Federal Claims Puts Corrective Action Under the Microscope

In a recently released bid protest decision that could spell trouble for federal agencies, the Court of Federal Claims rejected as unreasonable the Federal Highway Administration’s (“FHWA”) proposed corrective action in an...more

CFPB Supervisory Highlights: It’s all about the Compliance Management System

The CFPB published its Fall Supervisory Highlights last week, highlighting its examination observations across various financial products for examinations conducted between May and August 2016. The Report highlights key...more

Failure to Report Uplift Payments, Capacity Sales, Corrective Action Taken, Highlight FERC EQR Audit

by Cozen O'Connor on

The Federal Energy Regulatory Commission’s (FERC) recent audit of a company participating in numerous wholesale power markets highlights errors that can occur with electronic quarterly reports as well as the actions suggested...more

A New Tool for Anti-Bribery Compliance Program: ISO 37001

Recently, the International Organization for Standardization (ISO) adopted a new set of standards, designated as ISO 37001, to assist organizations in their ongoing fight against bribery. As a result of recent increases in...more

Health Care System’s HIPAA Security Risk Results in $2.14 Million Fine

by Saul Ewing LLP on

On October 18, 2016, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced that St. Joseph Health (SJH) agreed to settle allegations relating to the HIPAA Privacy and Security Rules,...more

129 Results
|
View per page
Page: of 6
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
Feedback? Tell us what you think of the new jdsupra.com!