Dept. of Health and Human Services Covered Entities

The United States Department of Health and Human Services is a federal executive department established in 1953, as part of the Department of Health, Education and Welfare. The Agency became independent in 1980... more +
The United States Department of Health and Human Services is a federal executive department established in 1953, as part of the Department of Health, Education and Welfare. The Agency became independent in 1980 and was renamed The Department of Health and Human Services at that time. HHS is charged with protecting and improving the health of the American population, as well as providing essential services.    less -
News & Analysis as of

Additional Clarification regarding HHS OCR Phishing Email Alert

More information from HHS OCR about the phishing threat... ..On November 28, 2016, the HHS Office for Civil Rights issued a listserv announcement warning covered entities and their business associates about a phishing...more

OCR Alerts Listservs About Fake Phishing Email to Covered Entities and Business Associates

On November 28, 2016, the Office for Civil Rights (OCR) issued an Alert to its listservs that a phishing email is being circulated on “mock HHS Departmental letterhead under the signature of OCR”s Director, Jocelyn Samuels”...more

OCR Issues Alert Regarding Phishing Email Disguised as Official OCR Audit Communication

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) published an alert on Nov. 28 describing a phishing email being circulated on mock HHS departmental letterhead under the signature of OCR...more

HHS OCR Alert: Phishing Email Disguised as Official OCR Audit Communication

This alert just in from HHS OCR: “It has come to our attention that a phishing email is being circulated on mock HHS Departmental letterhead under the signature of OCR’s Director, Jocelyn Samuels. This email appears to...more

OCR Warns of Phishing Campaign Disguised as Official OCR Communication

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) published an alert on Monday describing a phishing campaign disguised as an email from OCR. The email is being circulated on mock HHS...more

More on HIPAA Audits for 2016 and 2017–Desk Audits and On-Site Audits

As part of the ongoing HHS OCR HIPAA audit initiative, it is conducting “HIPAA desk audits.” These audits don’t involve auditors coming in your facility. Instead, covered entities are being asked to submit documents on...more

OCR Guidance Underscores Importance of Authentication under HIPAA

In its tenth OCR Cyber Awareness Newsletter of the year (Newsletter), the Office for Civil Rights (OCR) reminded HIPAA-covered entities and business associates of the importance of selecting an appropriate authentication...more

OCR Reminds Companies that Authentication is Key

In non-election news, the Office for Civil Rights (OCR) at the Department of Health and Human Services recently released its November Cyber Awareness Newsletter. This month’s newsletter focuses on the topic of...more

New Nondiscrimination Requirements Under ACA Section 1557: Do You Have to Comply?

This summer, the U.S. Department of Health and Human Services (“HHS”) issued final regulations under Section 1557 of the Affordable Care Act (“ACA”), which impacts entities principally engaged in providing or administering...more

HHS Issues Final Rule Implementing Section 1557 of ACA

Section 1557 of the Affordable Care Act (ACA) prohibits discrimination on the basis of race, color, national origin, sex, age, or disability. While the provision has been in effect since the ACA was passed in 2010, the US...more

ACA Nondiscrimination Requirements - Are You In Compliance?

Section 1557 of the Patient Protection and Affordable Care Act of 2010 ("ACA") prohibits discrimination on the basis of race, color, national origin, sex, age or disability in certain health programs or activities. The U.S....more

Health-Related Facilities That Receive Federal Financial Assistance Now Required to Post Non-Discrimination Notices

Health-related facilities that receive Federal financial assistance (e.g., Medicare or Medicaid reimbursement) have been required to comply with Federal, as well as State, non-discrimination laws in the provision of services....more

GAO Report Criticizes HHS’ HIPAA Cybersecurity Guidance and Program

Recently, the Government Accountability Office (GAO) reviewed the U.S. Department of Health and Human Services’ (HHS) security and privacy oversight and identified significant gaps in the cybersecurity guidance provided by...more

Cloud Service Providers Beware, You May Be Subject to HIPAA Without Knowing It

The use of cloud service providers has exploded in the past several years. According to estimates from Gartner, the market for cloud services is expected to reach $204 billion in 2016. But the use of cloud service providers...more

Hospital and Health System Health Benefit Plan Obligations Under New Nondiscrimination Rules: ACA Section 1557 and Requirements...

This impacts any entity (or health benefit plan) that receives federal financial assistance, including Medicare or Medicaid reimbursements. Two new regulations require some employers to make health plan design and...more

HHS Designates Cloud Service Providers as Business Associates Under HIPAA

Cloud service providers that process electronic protected health information (ePHI) are business associates under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), even if the PHI is encrypted and the...more

What Covered Entities Should Know About the FTC Act and Their Obligations Beyond HIPAA

The Federal Trade Commission and Department of Health and Human Services Office for Civil Rights (OCR) recently announced the release of new guidance for businesses on the Health Insurance Portability and Accountability Act...more

OCR Explains How Information Blocking Violates HIPAA

The US Department of Health and Human Services Office for Civil Rights recently posted guidance clarifying that a business associate such as an information technology vendor generally may not block or terminate access by a...more

HHS Publishes New Guidance on HIPAA and Cloud Computing

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) has issued a new guidance regarding HIPAA compliance and the use of cloud computing solutions. The guidance is intended to assist covered entities...more

HHS Issues Guidance Regarding Importance of Business Associate Agreements Between Covered Entities and Cloud Services Vendors

The Health and Human Services Office for Civil Rights (OCR) recently issued guidance regarding the importance of covered entities and cloud service vendors maintaining business associate agreements (BAAs) where electronic...more

Health Care System’s HIPAA Security Risk Results in $2.14 Million Fine

On October 18, 2016, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced that St. Joseph Health (SJH) agreed to settle allegations relating to the HIPAA Privacy and Security Rules,...more

Section 1557 of the Affordable Care Act: Implications for Health Care Providers and Health Insurers

Section 1557 of the Affordable Care Act (the “ACA”) prohibits discrimination on the basis of race, color, national origin, sex (including gender identity), age, or disability under any health program or activity that receives...more

Entities that are subject to the Affordable Care Act’s Nondiscrimination Rules must post notice by October 17, 2016 and implement...

In May, the Department of Health and Human Services (“HHS”) published a final rule implementing Section 1557 of the Affordable Care Act (“ACA”). The rule prohibits discrimination on the basis of race, color, national origin,...more

HHS-OCR Announces Guidance On HIPAA Compliance And Cloud Computing

On October 6, 2016, the Department of Health and Human Services Office for Civil Rights (“OCR”) issued guidance on complying with HIPAA privacy, security, and breach notification rules when using cloud computing technology...more

Failure Under the HIPAA Security Rule Costs $2.14 Million

On October 18, 2016, the Department of Health and Human Services, Office of Civil Rights (“OCR”) announced a $2.14 million settlement with St. Joseph Health (“St. Joseph”), a non-profit integrated Catholic healthcare delivery...more

221 Results
|
View per page
Page: of 9
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×