Patient Confidentiality Breaches, Data Breach, Health Care Providers

Privacy Briefs: March 2024

Health Care Compliance Association (HCCA) on 3/12/2024

Research from Guidepoint Security found that 2023 saw an 80% increase in ransomware activity year-over-year, driven in part by multiple mass exploitation campaigns impacting hundreds of organizations. In total, the report...more

OCR and an ALJ send a Clear Message about Importance of Mitigating Risks

Poyner Spruill LLP on 7/6/2018

In the latest twist in a case that began last year, an administrative law judge (ALJ) agreed that a $4.3 million penalty, levied by the Office of Civil Rights (OCR) against the MD Anderson Cancer Center as a result of HIPAA...more

Blog: HHS To Launch New HIPAA Audits in Early 2016 in Response to OIG Reports

Cooley LLP on 10/1/2015

The Office of Inspector General (OIG) of the U.S. Department of Health and Human Services (HHS) issued two reports yesterday calling for the HHS Office of Civil Rights (OCR) to strengthen its Health Insurance Portability and...more

Blog: Cancer Care Group Reaches Agreement to Settle Alleged HIPAA Violations

Cooley LLP on 9/9/2015

Last week, Cancer Care Group, P.C. (CCG), an Indiana radiation oncology practice, agreed to settle alleged violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) by paying $750,000 and adopting...more

UK Patients’ Data Exposed by Group Email

McGuireWoods LLP on 9/8/2015

The 56 Dean Street Clinic, which is operated by the Chelsea and Westminster NHS Trust and specializes in HIV and other sexual health services, has apologized for the error which revealed (to all 780 recipients) the full names...more

St. Elizabeth’s Medical Center Pays $218,400 to Settle Alleged HIPAA Security Case Stemming from Use of Cloud-Based Document...

Latham & Watkins LLP on 9/2/2015

Alleged HIPAA Violations Resulted from Medical Center’s Failure to Risk Assess Internet-Based Document Sharing Application and Inadequate Breach Response. The US Department of Health and Human Services (HHS) Office for...more

Is My Telehealth App Subject to HIPAA?

Foley & Lardner LLP on 7/16/2015

Many telehealth and mHealth app developers are concerned about whether or not their app is a medical device under FDA regulations (and rightfully so), they often pay less attention to the Health Insurance Portability and...more

Data Breach Plaintiff Given Second Chance to Certify Class Action Suit

Cozen O'Connor on 12/29/2014

Recently, the Pennsylvania Superior Court ruled in favor of data breach plaintiff Avrum Baum, giving him a second chance to certify a class action suit against Keystone Mercy Health Plan. Baum brought suit against the...more

Encryption and Securing BYO Devices at the Heart of Massachusetts AG $100,000 Settlement

Davis Wright Tremaine LLP on 11/26/2014

The Massachusetts Attorney General announced Friday that her office had reached a settlement with Beth Israel Deaconess Medical Center (BIDMC) surrounding a 2012 data breach in which a physician’s unencrypted personal laptop...more

Connecticut Supreme Court Allows Plaintiffs to Circumvent HIPAA’s No Private Right of Action Clause

Troutman Pepper on 11/26/2014

In an opinion released on November 11, the Connecticut Supreme Court ruled on whether the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations preempt a common law claim for...more

Connecticut Supreme Court Issues Decision That Could Expand State Law Liability in Data Breach Class Actions for Businesses...

K&L Gates LLP on 11/24/2014

Health care providers have not escaped the recent proliferation of data breach class actions, but plaintiffs generally have been unsuccessful in bringing claims based on the Health Insurance Portability and Accountability Act...more

Patient Confidentiality Breaches › Data Breach › Health Care Providers

"My best business intelligence, in one easy email…"