The CMS Interoperability and Prior Authorization Rules
Antitrust Considerations in Long-Term Care — Assisted Living and the Law Podcast
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 206: Supporting Patient Care with Darra Coleman of Prisma Health
Workplace Violence in Health Care: Dissecting the Legal Landscape and Implications for Employers – Diagnosing Health Care
Hospice Insights Podcast: What’s the Latest on UPICs? Highlights from Recent Audit Activity, Part I
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 205: Novant Health’s Carolinas Expansion with Senior Vice President Jason Bernd
Navigating the Labyrinth of Private Equity Investments in Health Care – Diagnosing Health Care
False Claims Act Insights - Are All Healthcare “Kickbacks” Subject to FCA Liability?
HHS Office for Civil Rights Director Melanie Fontes Rainer on Progress and News at OCR
Hospice Insights Podcast - Stories of Successful Hospice Leadership: The CEO and Chief Medical Officer Relationship
Understanding Trends and Challenges in the Behavioral Health Sector
AI in the Operating Room: Liability Issues for Device Makers — The Good Bot Podcast
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 202: Life Sciences Startups and Industry Developments with Gil Price, Life Sciences Leader
AGG Talks: Healthcare Insights Podcast - Episode 6: Charting the Future of Nursing Home Staffing
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 201: SHL Medical’s Investment in the Carolinas with Kimberlee Steele of SHL Medical
Healthcare Document Retention
The DEA Is Knocking at Your Door . . . Are You Prepared? – Diagnosing Health Care
Hospice Insights Podcast - A Rise in Medicare Deactivations: Tips for Avoiding This Financial Pain
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 199: Bringing Awareness to Organ and Tissue Donation with Dave DeStefano of We Are Sharing Hope
The Office of the New York State Attorney General announced on August 13 that Letitia James, along with the Attorneys General of Connecticut and New Jersey, fined Enzo Biochem, Inc. $4.5 million for failing to adequately...more
In light of the changing legal landscape following Dobbs v. Jackson Women’s Health Organization, the Department of Health and Human Services (the “Department”) issued a final rule (link, and corresponding fact sheet link)...more
The Federal Trade Commission’s (FTC) years-long effort to modernize its Health Breach Notification Rule (HBNR) in the midst of a swiftly changing technological landscape appears to be coming to an end. On Thursday, May 30,...more
Over the course of the past few months, the Office of Civil Rights (OCR) and the Office of the National Coordinator for Health Information Technology (ONC), both of which are divisions of the U.S. Department of Health and...more
In light of the ongoing investigation of Change Healthcare’s ransomware attack that resulted in the improper disclosure of thousands of individuals’ PHI, now seems like a perfect time to discuss HIPAA’s requirements...more
Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more
In March of this year, The Office for Civil Rights of the Department of Health and Human Services issued a letter addressing the recent cybersecurity incident impacting many health care entities, primarily Change Healthcare,...more
For healthcare providers and health systems covered by the privacy and security regulations under the Health Insurance Portability and Accountability Act (HIPAA), a breach of unsecured protected health information (PHI)...more
On October 31, 2023, the Office for Civil Rights (OCR) issued a press release announcing that it has settled with Doctors’ Management Services for $100,000 following a ransomware attack that compromised the protected health...more
Ideal for professionals with some compliance knowledge and experience, HCCA’s Healthcare Privacy Compliance Academy offers practitioners a deeper understanding of effective compliance management in a healthcare setting. The...more
Data Breaches risk legal consequences—both from state and federal governments and consumers, as well as reputational harm. Last month, MCNA—a dental benefit provider—provided notice of a data breach that exposed the...more
Over the past decade, the number of health care data breaches reported to the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) has increased dramatically. From 2009 to 2022, over 5,000 data...more
HIPAA requires that covered entities notify the Office for Civil Rights (OCR) of any breaches of unsecured protected health information that affects less than 500 individuals in a calendar year within 60 days following the...more
Report on Patient Privacy Volume 22, Number 11. November 2022 - The second largest nonprofit hospital chain in the U.S. has been grappling with an Oct. 3 cybersecurity incident that affected facilities across the country,...more
Cyber-attacks on health care entities are becoming increasingly frequent, and the resulting data breaches are often complex. In the event of a cyber-attack, health care entities and their business associates must adhere to...more
Oklahoma State University’s Center for Health Services recently paid $875,000 to settle potential HIPAA violations after a cyberattack resulted in the unauthorized access of its patients’ protected health information. A...more
According to the 2022 State of Ransomware Report issued recently by Sophos, it surveyed 5,600 IT professionals from 31 countries, including professionals in the health care sector. Those professionals in the health care...more
In general, both state and federal laws apply to health information or protected health information that is in the possession of hospitals, health systems, and medical providers. HIPAA requires that covered entities...more
HIPAA-covered entities should note the quickly approaching March 1, 2022 deadline for reporting breaches of unsecured protected health information that occurred in 2021 and involved fewer than 500 individuals. This article...more
When can a data breach get worse? When the process of notifying victims creates a second breach. Take the example of a cancer treatment center that recently paid $425,000 to settle allegations that included a faulty...more
One of the challenging things about HIPAA (Health Insurance Portability and Accountability Act) enforcement is the fact that both the Office for Civil Rights and State AGs have jurisdiction to assess fines and penalties for...more
The California Attorney General ("AG") has issued guidance reminding health care providers of their duty to report health care data breaches and to comply with other state and federal data privacy laws....more
Cyberattacks against healthcare providers accounted for 79% of all reported data breaches in 2020. (See here). The U.S. Department of Health and Human Services’ (HHS) Office of the Assistant Secretary for Preparedness and...more