News & Analysis as of

Patient Confidentiality Breaches Data Breach Health Insurance Portability and Accountability Act (HIPAA)

Perkins Coie

California Issues New Regulations on Notification Obligations for Medical Information Breaches

Perkins Coie on

Certain California-licensed healthcare facilities are now subject to additional breach reporting obligations pursuant to regulations (Regulations)[1] issued by the California Department of Public Health (Department) on July...more

Poyner Spruill LLP

OCR and an ALJ send a Clear Message about Importance of Mitigating Risks

Poyner Spruill LLP on

In the latest twist in a case that began last year, an administrative law judge (ALJ) agreed that a $4.3 million penalty, levied by the Office of Civil Rights (OCR) against the MD Anderson Cancer Center as a result of HIPAA...more

Ruder Ware

When Does a HIPAA Breach Exist?

Ruder Ware on

Conducting HIPAA Breach Risk Assessments - The HIPAA rules relating to assessment of potential patient confidentiality breaches were changed in 2013. Specifically, on January 17, 2013, the Office of Civil Rights released...more

Cooley LLP

Blog: HHS To Launch New HIPAA Audits in Early 2016 in Response to OIG Reports

Cooley LLP on

The Office of Inspector General (OIG) of the U.S. Department of Health and Human Services (HHS) issued two reports yesterday calling for the HHS Office of Civil Rights (OCR) to strengthen its Health Insurance Portability and...more

Cooley LLP

Alert: UCLA Cleared in Lawsuit Alleging Lax Authentication Involving Insider Access to Medical Records

Cooley LLP on

Earlier this month, a California jury found the University of California, Los Angeles Health System (UCLA) not liable for damages that allegedly resulted when a medical office assistant, Alexis Price, improperly accessed and...more

Cooley LLP

Blog: Cancer Care Group Reaches Agreement to Settle Alleged HIPAA Violations

Cooley LLP on

Last week, Cancer Care Group, P.C. (CCG), an Indiana radiation oncology practice, agreed to settle alleged violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) by paying $750,000 and adopting...more

Latham & Watkins LLP

St. Elizabeth’s Medical Center Pays $218,400 to Settle Alleged HIPAA Security Case Stemming from Use of Cloud-Based Document...

Latham & Watkins LLP on

Alleged HIPAA Violations Resulted from Medical Center’s Failure to Risk Assess Internet-Based Document Sharing Application and Inadequate Breach Response. The US Department of Health and Human Services (HHS) Office for...more

Foley & Lardner LLP

Is My Telehealth App Subject to HIPAA?

Foley & Lardner LLP on

Many telehealth and mHealth app developers are concerned about whether or not their app is a medical device under FDA regulations (and rightfully so), they often pay less attention to the Health Insurance Portability and...more

Cooley LLP

Alert: Five Ways to Reduce Your HIPAA Liability

Cooley LLP on

As of early December 2014, 1,170 security breaches under the Health Insurance Portability and Accountability Act (HIPAA) involving 31 million records had been reported to the U.S. Department of Health and Human Services (HHS)...more

Troutman Pepper

Connecticut Supreme Court Allows Plaintiffs to Circumvent HIPAA’s No Private Right of Action Clause

Troutman Pepper on

In an opinion released on November 11, the Connecticut Supreme Court ruled on whether the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations preempt a common law claim for...more

K&L Gates LLP

Connecticut Supreme Court Issues Decision That Could Expand State Law Liability in Data Breach Class Actions for Businesses...

K&L Gates LLP on

Health care providers have not escaped the recent proliferation of data breach class actions, but plaintiffs generally have been unsuccessful in bringing claims based on the Health Insurance Portability and Accountability Act...more

Mintz - Privacy & Cybersecurity Viewpoints

Health Data Breach Victims Have Standing to Sue Says WV Supreme Court

Mintz - Privacy & Cybersecurity Viewpoints on

The most common defense against class actions for data breach has itself been breached in a ruling last week by the West Virginia Supreme Court....more

Brownstein Hyatt Farber Schreck

Two Health Care Organizations Pay Largest HIPAA Fine at $4.8 Million Resulting from Unsecured Shared Network

Brownstein Hyatt Farber Schreck on

New York-Presbyterian Hospital and Columbia University entered into a settlement with the Department of Health and Human Services’ Office of Civil Rights (OCR) to resolve allegations that the organizations had violated the...more

Davis Wright Tremaine LLP

$4.8 Million – Largest HIPAA Settlement to Date

Davis Wright Tremaine LLP on

On May 7, 2014, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) issued a press release announcing that two health care organizations—New York and Presbyterian Hospital (“NYP”) and Columbia...more

Obermayer Rebmann Maxwell & Hippel LLP

Server Breach Makes ePHI Accessible on Google, Costs Covered Entities $4.8 Million

Obermayer Rebmann Maxwell & Hippel LLP on

It would be pretty unsettling if your patient status, vital signs, medications, and laboratory results were available for the world to see on Google, wouldn’t it? According to recent settlement agreements announced by the...more

Womble Bond Dickinson

A Detailed Analysis of Changes to HIPAA and the Implications for Healthcare Providers and Others in the Healthcare Industry: HIPAA...

Womble Bond Dickinson on

Changes to the HIPAA Security Rule Background: The HIPAA Security Rule protects electronic PHI by requiring Covered Entities to implement certain administrative, physical, and technical safeguards surrounding...more

BakerHostetler

OCR'S Breach Settlement: The First Ever Involving Less Than 500 Patients

BakerHostetler on

The HHS Office for Civil Rights (OCR) started 2013 with a bang by announcing that it had reached "the first settlement involving a breach of unprotected electronic protected health information (ePHI) affecting fewer than 500...more

Stinson LLP

Health Law Alert: Deficient Data Security On Mobile Devices Leads To First HIPAA Breach Settlement Involving Less Than 500...

Stinson LLP on

On January 2, 2013, the U.S Department of Health and Human Services, Office of Civil Rights (OCR) announced its first HIPAA breach settlement involving less than 500 patients. OCR took action against a hospice provider in...more

King & Spalding

First HHS OCR Settlement for HIPAA Breach Involving Less Than 500 Patients Sends Message to Providers

King & Spalding on

On January 2, 2013, HHS announced that the Hospice of North Idaho (HONI) agreed to pay $50,000 and enter into a Corrective Action Plan (CAP) as part of a settlement involving a breach of unsecured electronic protected health...more

Foley & Lardner LLP

First-Ever HIPAA Settlement Involving Fewer Than 500 Patients Announced

Foley & Lardner LLP on

On January 2, 2013, the U.S. Department of Health and Human Services (HHS) announced a settlement with the Hospice of North Idaho (HONI) for potential HIPAA violations....more

Baker Donelson

First OCR Settlement Involving a “Small” Breach Focuses on Mobile Device Security

Baker Donelson on

In what is best understood as a follow-up to both the recent settlement with MEEI and the release of its mobile device security guidance, HHS OCR recently released details of a settlement reached with the Hospice of Northern...more

21 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide