Protected Health Information

News & Analysis as of

Government Conference Highlights Need for Protecting Health Information

The National Institute of Standards and Technology (NIST) and the Department of Health and Human Services (HHS), Office for Civil Rights (OCR) recently highlighted the importance of protecting health information at the...more

Company Claims “HIPAA Has No Teeth”, Will Start Notifying Affected Individuals of Security Breaches and Vulnerabilities that Have...

A company named SLC Security, LLC (“SLC”), recently announced that it will begin notifying individuals if it believes it has identified a security breach or vulnerability of a company and it has not received a satisfactory...more

Health Update - October 2014

Like It or Not, Obamacare Is Reshaping the Healthcare Industry - Editor’s Note: As we approach the one-year anniversary of Obamacare’s launch, the pundits continue to argue over whether or not it’s working. Meanwhile,...more

Medical Information More Valuable to Hackers Than Credit Card Numbers

In light of the recently reported large healthcare data breaches that have resulted in the potential theft of the personal information of millions of patients, the FBI warned healthcare providers yet again of the dangers of...more

Talk Amongst Yourselves: HIPAA Does Not Preempt Florida Med Mal Presuit Authorization Law

The United States Court of Appeals for the Eleventh Circuit recently concluded that the Health Insurance Portability and Accountability Act of 1996 (HIPAA) does not prevent the application of a Florida law requiring...more

Complying with Recent Changes to the Physician’s Notice of Privacy Practices

A physician practice’s Notice of Privacy Practices (“NPP”) acts as the “roadmap” to the practice’s permitted uses and disclosures of their patients’ protected health information (“PHI”). ...more

CMS Reopens Application Period for Meaningful Use Hardship Exception

CMS Reopens Application Period for Meaningful Use Hardship Exception - the period during which certain eligible providers may request a hardship exception from qualifying as a Meaningful User under the Medicare EHR Incentive...more

Device Advice: New Guidance From the FDA on Medical Devices and Cybersecurity

Are medical devices, subject to pre- and post-market regulatory controls, under increasing cybersecurity scrutiny? The FDA recently published recommendations for consideration of cybersecurity management in a product’s design...more

Recent 11th Circuit Cases Provide Important HIPAA Guidance - Healthcare Providers Should Be Proactive by Reviewing Their HIPAA...

On Oct. 10, 2014, the 11th Circuit opinion in Murphy v. Dulay provides significant guidance regarding HIPAA authorization forms. One of the most important provisions of the opinion focuses on the fact that HIPAA...more

HITECH Act Assures Meaningful Use & Care Coordination…For Some

The passage of the ARRA HITECH Act in 2009 fostered significant advancements in patient engagement and care coordination by incentivizing primarily physical health providers and acute care hospitals to make smarter use of...more

Good News: California Extends Its Medical Data Breach Notification Requirement From 5 to 15 Days

On Sept. 18, 2014, California’s governor approved Assembly Bill 1755, extending California’s stringent breach notification deadline for medical information breaches from five business days to 15 business days for clinics,...more

Starting Oct. 6, Patients Can Access Test Reports Directly From Clinical Laboratories

On Oct. 6, 2014, a final rule issued jointly by the Centers for Medicare & Medicaid Services (CMS), Centers for Disease Control and Prevention (CDC), and Office for Civil Rights (OCR) will require all HIPAA-covered labs...more

Employee Benefits Developments - September 2014

CASES - Post-Retirement Medical Benefits Under Siege. A recent spike in retiree benefit litigation is evidence of a growing interest among employers in strategies designed to contain, reduce, and eliminate the current...more

“LoProCo”, 12,915 Complaints, and Other Lessons from OCR/NIST

12,915 complaints were reported in 2013 to the Department of Health and Human Services Office of Civil Rights (“OCR”) according to Illiana L. Peters, Senior Adviser for HIPAA Compliance and Enforcement. Cozen O’Connor...more

Recent Trends in HIPAA Liability

Since the passage of the 2013 HIPAA Omnibus Rule, there has been a substantial increase in HIPAA enforcement actions brought by the Department of Health and Human Services, including an increase in so-called “high-impact...more

Medical Software Licensing - Tips from the Trenches

Medical offices are adopting complex software products such as electronic health record (EHR) systems and practice management systems in increasing numbers. While the ultimate hope is to improve patient care and practice...more

Health Update - September 2014

Engaging Patients While Addressing Their Privacy Concerns: The Experience of Project HealthDesign - Patients are using the Internet, personal health records (PHRs) and mobile applications or “apps” to collect and...more

HIPAA Omnibus Rule: Deadline Approaching to Update Grandfathered Business Associate Agreements

Although the HIPAA Omnibus Rule (the “Rule”) went into effect nearly 18 months ago, the transition period for bringing business associate agreements into compliance with the Rule’s new requirements will end on September 23,...more

Mishandling Medical Records Turns Into an $800,000 HIPAA-Compliance Mistake

A non-profit healthcare company agreed to pay $800,000 as part of a settlement with the U.S. Department of Health and Human Services (HHS) for allegedly mishandling 71 boxes of medical records in violation of the privacy rule...more

Healthcare Legal News: Volume 4, Number 3 - Special Issue: HIPAA Update

Recent Trends in HIPAA Liability - Since the passage of the 2013 HIPAA Omnibus Rule, there has been a substantial increase in HIPAA enforcement actions brought by the Department of Health and Human Services, including...more

September 22, 2014 – HIPAA Compliance Deadline for Business Associate Agreements Is Just Around the Corner

All business associate agreements (“BAAs”) must be updated and compliant with current Health Insurance Accountability and Portability Act (“HIPAA”) regulations by September 22, 2014. Failure to meet this deadline could result...more

A New Sheriff in Town: Federal Trade Commission Enforcement of Medical Information Security

A recent court decision found that the Federal Trade Commission (FTC) has authority to enforce the requirements for security of Protected Health Information, or PHI, as defined under the Health Information Portability and...more

Employee Taking Protected HIPAA Information Not Protected Under ADEA

The Health Insurance Portability and Accountability Act (HIPAA) requires health care providers and other businesses to protect the confidentiality of certain patient information. Last month in an unpublished decision, the...more

HIPAA Breaches: What They Are and What You Can Do to Protect Your Clients

45 CFR §§ 164.400-414– otherwise known as the HIPAA Breach Notification Rule– requires all entities and businesses covered by HIPAA to disclose any breaches of unsecured protected health information (PHI). In order to protect...more

Cybersecurity Litigation Monthly Newsletter

As we discussed in July, Tiversa, a “cyber-intelligence” company, notified the FTC in 2009 that a file containing the personal information of about 9,300 LabMD patients was available on a peer-to-peer file sharing network....more

410 Results
|
View per page
Page: of 17