Health Insurance Portability and Accountability Act

The Health Insurance Portability and Accountability Act is a United States federal statute enacted in 1996 to provide greater protection for individual's medical information and prescribe standards for the... more +
The Health Insurance Portability and Accountability Act is a United States federal statute enacted in 1996 to provide greater protection for individual's medical information and prescribe standards for the manner in which healthcare professionals gather, use, and maintain health information.  less -
News & Analysis as of

Navigating Legal Issues in Connection with Employer Sponsored On-Site Health Clinics

Employers are increasingly concerned with the high cost of health care and executives in the C-Suite are beginning to take notice. The Affordable Care Act (‘‘ACA’’) required employers who sponsor group health plans to adopt a...more

Going To The Heart Of Workplace Health Programs And Apps

The wearable technology market is booming and shows no sign of slowing down anytime soon. From watches to glasses, to chips and sensors built into clothing and accessories, wearable technology seems to have reached every...more

European Court of Justice Invalidates U.S.-EU Safe Harbor

On October 6, 2015, the European Court of Justice (“ECJ”), the top court of the European Union (“EU”), released its opinion in Maximillian Schrems v. Data Protection Commissioner (C-362/14), invalidating the U.S.-EU Safe...more

OIG Reports Insufficient Oversight Of HIPAA Compliance

The HHS Office for Civil Rights (OCR) must improve its oversight and enforcement of patient information privacy and security rules by “covered entities” and their business associates under the Health Information Portability...more

Is Your HIPAA Compliance Program Ready for the FTC?

Everyone in healthcare knows that the next round of HIPAA audits is coming. Covered entities and business associates have long been advised to review and update their HIPAA security risk analyses, have business associate...more

OIG report spurs OCR to announce phase 2 audits

On September 29, it was revealed that the HHS Office for Civil Rights (OCR) will commence Phase 2 of its HIPAA audit program in “early 2016.” OCR’s revelation regarding the Phase 2 audits, which had been the subject of...more

Blog: HHS Launches HIPAA Platform for Medical Application Developers

On Monday, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) released an online platform designed for use by developers of mobile medical applications (apps). The site allows users to...more

OCR Launches Interactive HIPAA Site for Mobile Health App Developers

On October 5, 2015, the Office for Civil Rights (OCR) announced the launch of a new platform for mobile health (mHealth) developers and others interested in the intersection of health information technology and HIPAA privacy...more

OIG Calls for Stronger HIPAA Compliance Efforts

The OIG has issued two reports calling for stronger ONC oversight of covered entity compliance with HIPAA standards. In the first report, “OCR Should Strengthen Its Oversight of Covered Entities’ Compliance with the HIPAA...more

Get Your Questions Ready

A lot has changed since the HIPAA Privacy Rule was finalized in 2002 and the HIPAA Security Rule was finalized a year later in 2003. The iPhone had not been released (that happened in 2007), Apple had just released the...more

Reports Instruct Office of Civil Rights to Increase HIPAA Enforcement Activities

On September 29, 2015, the Office of Inspector General (OIG) released two reports that reviewed the Office of Civil Rights’ (OCR) enforcement of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). The...more

OCR announces launch of Phase 2 of HIPAA audits

Although the Office for Civil Rights (OCR) has indicated in the past that it would start its next round of HIPAA audits, apparently it means business now. In the wake of an Inspector General report that the OCR was merely...more

Comment period extended for NIST Cybersecurity Practice Guide

The National Institute of Standards and Technology has announced that due to stakeholder feed-back, the period to submit comments for the draft guide, “Securing Electronic Health Records on Mobile Devices” has been extended...more

Blog: HHS To Launch New HIPAA Audits in Early 2016 in Response to OIG Reports

The Office of Inspector General (OIG) of the U.S. Department of Health and Human Services (HHS) issued two reports yesterday calling for the HHS Office of Civil Rights (OCR) to strengthen its Health Insurance Portability and...more

Just in Time for the Phase II Audits: OIG Criticizes OCR’s Enforcement Efforts

As HIPAA-regulated entities anxiously await the commencement of the Phase II HIPAA audit program, the Office of the Inspector General (OIG) for the Department of Health and Human Services (HHS) has issued a report critical of...more

Highlights from the Tenth CEO/Innovators Roundtable: June 4 – 5, 2015

This past June, leaders from health systems, outpatient services companies, health insurers, IT and equipment suppliers, health retailers, home care providers, pharmaceutical companies, and investors gathered in Chicago for...more

Appellate Court Notes

Supreme Court Advance Release Opinions: SC19253 - RBC Nice Bearings, Inc. v. SKF USA, Inc. [An important decision on contract waiver but one all attorneys should recall from the UCC or Contracts course we took...more

Alert: UCLA Cleared in Lawsuit Alleging Lax Authentication Involving Insider Access to Medical Records

Earlier this month, a California jury found the University of California, Los Angeles Health System (UCLA) not liable for damages that allegedly resulted when a medical office assistant, Alexis Price, improperly accessed and...more

HHS Issues Proposed Rule That Would Revise the Federal Policy for the Protection of Human Subjects

Proposals are Intended to Enhance Protections for Higher Risk Clinical Research and Privacy Safeguards, including Uses of Biospecimens and Identifiable Private Information - On September 8, 2015, the Department of Health...more

FCC’s New Order Provides Some Guidance for Imaging Centers Placing Autodialed Calls to Patients

The Telephone Consumer Protection Act (“TCPA”) protects consumers from unwanted telephone calls and text messages by requiring a business to obtain prior express consent before placing autodialed or prerecorded voice calls to...more

What's So Great About an Information Security Policy?

Lawyers and compliance professionals constantly tout the importance of internal information security policies, particularly in light of data privacy problems that are reported almost daily in the media. Admittedly, drafting...more

It’s About Time! 10 Key (Needed) Changes Proposed to the Human Subjects Protection “Common Rule”

The world has changed drastically since 1991 when Operation Desert Storm was underway; the USSR crumbled; Prince Charles and Princess Diana separated; the World Wide Web was born; gas cost $1.14; and the Dow peaked at 3168....more

Evolving Litigation of Data Breach Claims

An Illinois circuit court judge has dismissed five of six claims in a consolidated class action against Advocate Health and Hospital Corporation arising from a data breach in July 2013. The judge’s dismissal with prejudice...more

Fitbit Agrees to Sign Business Associate Agreements and Take on HIPAA Compliance

Is your Fitbit data covered by HIPAA? It depends upon where you got it (kind of). If you go to the store and pick up a Fitbit on your own, the data it generates is governed by the user agreement that you click through...more

The Affordable Care Act’s Reporting Requirements for Carriers and Employers (Part 10 of 24): IRS Issues Final Form 2015...

The IRS recently issued final instructions for Forms 1094-B and 1095-B and Forms 1094-C and 1095-C . The 2015 Instructions for Forms 1094-B and 1095-B implement a suggestion we made in a previous post relating to the...more

1,053 Results
View per page
Page: of 43

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.