Corrective Actions

News & Analysis as of

Breach of Privacy Prompts Breach of Etiquette: DHHS Sets New Precedent in Privacy Breach Enforcement

On January 9, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) took action against a health system for non-timely reporting of a breach of protected health information. It was the first...more

Time is of the Essence When Reporting a Breach of PHI

The failure to timely report a breach of unsecured protected health information (PHI) has cost Presence Health (one of the largest health systems in Illinois) almost half of a million dollars. Earlier this month,...more

Insight from CFPB Regarding Employee Incentives in the Wake of Wells Fargo Consent Order

This past November, in the wake of the Wells Fargo debacle, the CFPB issued a Compliance Bulletin which addressed employee incentives and the consumer risks associated with them. CFPB Compliance Bulletins are non-binding...more

FCC Settles Largest Lifeline Enforcement Case for $30 million and Permanent Ban from the Program

We reported last spring on the FCC’s accusations against Total Call Mobile and proposed fine of more than $51 million relating to agent misconduct and the failure of company management to take sufficient and early corrective...more

Make Sure You Address Compliance with Export Controls

Compliance officers have to avoid professional myopia. The focus of compliance these days has been on anti-corruption, antitrust, and AML, depending on your company’s industry. They fit nicely together under an...more

Court Grants Challenge to Agency’s Corrective Action in Response to Protest

A recent court decision may provide other disappointed offerors a pathway for challenging agencies’ corrective action that unreasonably favors the original contract awardee. In Professional Service Industries, Inc. v. U.S.,...more

UMass Amherst Settles HIPAA Violations with OCR for $650,000

The Office for Civil Rights (OCR) has announced that the University of Massachusetts Amherst (UMass) has agreed to settle an investigation against it as a result of a malware infection for $650,000, along with implementing a...more

Court of Federal Claims Puts Corrective Action Under the Microscope

In a recently released bid protest decision that could spell trouble for federal agencies, the Court of Federal Claims rejected as unreasonable the Federal Highway Administration’s (“FHWA”) proposed corrective action in an...more

CFPB Supervisory Highlights: It’s all about the Compliance Management System

The CFPB published its Fall Supervisory Highlights last week, highlighting its examination observations across various financial products for examinations conducted between May and August 2016. The Report highlights key...more

Failure to Report Uplift Payments, Capacity Sales, Corrective Action Taken, Highlight FERC EQR Audit

The Federal Energy Regulatory Commission’s (FERC) recent audit of a company participating in numerous wholesale power markets highlights errors that can occur with electronic quarterly reports as well as the actions suggested...more

A New Tool for Anti-Bribery Compliance Program: ISO 37001

Recently, the International Organization for Standardization (ISO) adopted a new set of standards, designated as ISO 37001, to assist organizations in their ongoing fight against bribery. As a result of recent increases in...more

Health Care System’s HIPAA Security Risk Results in $2.14 Million Fine

On October 18, 2016, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced that St. Joseph Health (SJH) agreed to settle allegations relating to the HIPAA Privacy and Security Rules,...more

The IRS Voluntary Compliance Program Is Like Your Parents

As a child, you’re usually told by your parents that they just want to hear the truth and that telling the truth is going to carry a far less punishment than if you lie and try to hide whatever bad thing you do. The...more

St. Joseph Health Settles with OCR for $2.14 Million

The Office for Civil Rights (OCR) has announced that it has entered into a settlement with St. Joseph Health, which operates hospitals and nursing homes in California, Texas and New Mexico, for $2.14 million for alleged HIPAA...more

Failure Under the HIPAA Security Rule Costs $2.14 Million

On October 18, 2016, the Department of Health and Human Services, Office of Civil Rights (“OCR”) announced a $2.14 million settlement with St. Joseph Health (“St. Joseph”), a non-profit integrated Catholic healthcare delivery...more

Homeopathic Teething Products Linked to Child Deaths, FDA Says

Belladonna is blamed for the deaths of 10 babies. The parents treated their teething phase with homeopathic teething products (gels and tablets) containing the natural substance. Another name for belladona is deadly...more

What is “Immediate and Appropriate”?

In recent posts, we have written about old and new forms of sexual harassment and about the employer’s obligation to investigate harassment complaints. This week, we address what happens when the investigation is complete...more

Small-Breach Focus Shows Growing Scope Of HIPAA Probes

Flexing yet more enforcement muscle under the Health Insurance Portability and Accountability Act, on Aug. 18, 2016, the U.S. Department of Health and Human Services Office for Civil Rights announced that it will more widely...more

ONC Releases Enhanced Regulatory Requirements to Improve Transparency for Health Information Technology Products

The Office of the National Coordinator for Health Information Technology (“ONC”) has operationalized regulatory requirements to improve transparency in health information technology (“health IT”). The regulations, which were...more

Stormwater Forecast: Prepare for More Aggressive Benchmark Monitoring and Corrective Action Requirements under the Next Proposed...

EPA is expected to propose a revised system of benchmark monitoring and corrective action requirements to replace those of the current 2015 Multi-Sector General Permit for Stormwater Associated with Industrial Activities...more

HHS Office for Civil Rights to Increase Investigation of Small HIPAA Breaches

The Office for Civil Rights within the U.S. Department of Health and Human Services (OCR) recently announced that it has increased its review of breaches of protected health information affecting fewer than 500 individuals....more

Record-Breaking HIPAA Settlement Sends Strong Message to Covered Entities

This month marked the largest HIPAA settlement to-date for a single entity. Advocate Health Care Network (“Advocate”) agreed to pay $5.5 million and adopt a corrective action plan after an investigation by the Department of...more

Virginia DEQ to Revise Risk Assessment Protocols

The Virginia Department of Environmental Quality (“DEQ”) is preparing to implement revised risk assessment protocols for many of its site cleanup programs. DEQ’s new approach is called the Virginia Unified Risk Assessment...more

Office of Civil Rights Posts HIPAA Phase II Audit Guidance and Advocate Health Care Settlement Information

The Office of Civil Rights (OCR) recently uploaded two items of interest: information regarding the largest penalty to date against a single entity, Advocate Health Care Network (Advocate), and HIPAA Phase II Desk Audit...more

Bid Protests in Government Contracts: 17.5 Billion Reasons Why They Continue to Rise

One of the reasons for the increase in protests no doubt is agency corrective action. Looking at GAO protest sustain rates is misleading, because it excludes instances where an agency decides on its own to fix a perceived...more

117 Results
|
View per page
Page: of 5
Popular Topics

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×