The Legal Tightrope: Surviving Parallel Investigations
Navigating Government Contracts: Diana Shaw on Oversight and Whistleblower Protections
The Presumption of Innocence Podcast: Episode 45 - The Grit, Grace and Gift of Second Chances
The Justice Insiders Podcast - The Ever-Expanding Net: Corporate Compliance in an Era of Increasing Trade Sanctions and Restrictions
False Claims Act Insights - Are All Healthcare “Kickbacks” Subject to FCA Liability?
Episode 333 -- The Boeing Proposed Plea Agreement
DOJ’s New Self-Disclosure Policy and Corporate Whistleblower Awards Pilot Program
False Claims Act Insights - Assessing the Fallout from a Thermonuclear FCA Verdict
FCPA Survival Guide - Step 8 - Investing in Compliance
Exploring the AI and Crypto Intersection
The Justice Insiders Podcast: Jarkesy’s Implications for the Administrative State
The Presumption of Innocence Podcast: Episode 41 - The Dynamics of Decision-Making: Psychology and the Criminal Justice System
INTERPOL and Child Kidnapping Cases. What are INTERPOL’s Abilities and Limitations?
False Claims Act Insights - Eureka! Government Investigators Seek Out Research Misconduct
The Justice Insiders Podcast - AI-Washing: Everything Old Is New Again
The CFPB and State AGs Act Jointly Against Online Educational Company
Will the U.S. Have a GDPR? With Rachael Ormiston of Osano
Episode 328 -- Sanctions Enforcement Risks and Redlines
FCPA Survival Guide: Step 3 - Extensive Remediation
Episode 324 -- Third-Party Risks and Sanctions Compliance
We’ve talked before about the FTC’s focus on consumer health privacy. In cases against BetterHelp and GoodRx, a blog post announcing rules it intends to enforce in the space, and a report summarizing its recent privacy and...more
Last month, the Federal Trade Commission (“FTC”) hosted its annual PrivacyCon event, featuring an array of experts discussing the latest in privacy and data security research. This post, covering healthcare privacy issues, is...more
If the penultimate enforcement settlement of 2023 issued by the HHS Office for Civil Rights (OCR) sounds familiar, that’s with good reason. And the last one of the year should ring some bells, too....more
Is your organization a business associate? You could be subject to enforcement action if you fail to protect health information within your control from ransomware attacks. In October, for the first time, the U.S....more
Report on Patient Privacy Volume 23, no 7 (July 2023) In two public talks this spring, Melanie Fontes Rainer, director of the HHS Office for Civil Rights (OCR), said completing the 2021 proposed regulation extensively...more
The FTC recently proposed amendments to the Health Breach Notification Rule (HBNR). This is on trend with its aggressive interest over the last couple of years in health data not covered by HIPAA....more
On May 17, 2023, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement with MedEvolve, Inc. for $350,000. MedEvolve provides practice and revenue cycle management and practice...more
New York Attorney General Letitia James announced on March 27, 2023 that she had levied a fine against law firm Heidell, Pittoni, Murphy & Bach LLP for failing to secure personal and health information of clients exposing the...more
On March 2, 2023, following a 4-0 vote, the Federal Trade Commission announced a complaint and proposed consent order with BetterHelp, Inc., an online counseling platform that allegedly disclosed consumer health data to...more
For the first time, the Federal Trade Commission has brought an enforcement action under its 2009 Health Breach Notification Rule (HBNR). The case was brought against a digital health company, GoodRx Holdings, Inc., for...more
The start of 2023 has brought with it significant changes to data privacy – new state laws concerning data privacy came into effect January 1 (the California Privacy Rights Act and the Virginia Consumer Data Protection Act),...more
Report on Patient Privacy Volume 22, Number 11. (November 2022) Nearly five years passed from the time the University of Texas MD Anderson Cancer Center reported to the HHS Office for Civil Rights (OCR) that three...more
On August 23, 2022, the Office for Civil Rights (OCR) issued a press release announcing that it had settled with New England Dermatology, P.C. (NED) for $300,640 “over the improper disposal of protected health information.” ...more
Telemedicine and remote patient monitoring companies often want to maintain open communication channels with patients, whether it be scheduling, medication reminders, engagement pings, or even new product and service updates....more
Will HHS’ approach for imposing penalties in the aftermath of a data breach become a little clearer in 2021? This is a distinct possibility in the wake of a Fifth Circuit decision vacating penalties against MD Anderson Cancer...more
The Office for Civil Rights (OCR) announced on October 23, 2019, that Jackson Health System (“Jackson”), a not for profit hospital system comprised of six hospitals, urgent care centers, nursing facilities and primary care...more
Elite Dental Associates (Elite), located in Dallas, Texas has agreed to settle alleged HIPAA violations with the Office for Civil Rights (OCR) for $10,000....more
The Wolcott school system in Wolcott, Connecticut has been recovering for four months from a ransomware attack that hit its system at the end of the school year. Last week, it was hit with a second attack. According to...more
According to reports, a Georgia-based physician who previously pleaded guilty to criminal violations of the Health Insurance Portability and Accountability Act (HIPAA) received six months of probation from a Massachusetts...more
The Department of Health and Human Services Office for Civil Rights (OCR) announced this week that it has settled the largest health care data breach for the largest enforcement fine in history....more
IN THE SPOTLIGHT - - SEC Sanctions Unregistered EB-5 Investments Broker SECURITIES - - FINRA to Assess Member Firms’ Culture - SEC Seeks Fund Responses to Distribution-In-Guise Guidance ...more
The HHS Office for Civil Rights (OCR) has released a new platform to provide mobile health developers (and any other interested stakeholders) a sounding board to ask questions, voice concerns, and “spitball” ideas about HIPAA...more
In the span of two days, mobile device users learned of two data breaches that could compromise their personal data. In one, Experian (a credit reporting agency) reported that it was hacked, potentially putting 15 million...more
The Office for Civil Rights (OCR) of the Department of Health and Human Services has launched a web based portal so medical mobile app developers can ask their “burning” questions about HIPAA compliance....more
Earlier this month, privacy and security professionals from around the globe gathered for “Privacy. Security. Risk. 2015”—the second joint conference between the International Association of Privacy Professionals and the...more