Privacy Rule

News & Analysis as of

OCR’s New Bulletin on Ensuring Privacy in Public Health Emergencies

This week, the HHS Office of Civil Rights (OCR) issued a bulletin (Bulletin) to remind covered entities and business associates that “the protections of the Privacy Rule are not set aside during an emergency.” The...more

Privacy Australia: What Do Death, Taxes and Deactivated Online Accounts Have in Common?

Australia recently joined the growing ranks of countries that take privacy seriously - so seriously that a breach of the Privacy Act 1988 (Cth) (Privacy Act) and the Australian Privacy Principles (APPs) can now result in a...more

Be Prepared – HIPAA Audits are Coming in 2014

Later this year, the Department of Health and Human Services (“DHHS”) is expected to launch its permanent HIPAA Audit Program. The HIPAA Audit Program is authorized under Section 13411 of the HITECH Act, and is designed to...more

OCR Proposes HIPAA Amendments to Address Gun Violence

As we previously reported, President Obama has made it a priority to improve the National Instant Criminal Background Check System (“NICS”). Last week, more than eight months after the issuance of a advance notice of...more

3 Weeks Left: Is Your Business Ready for HIPAA Compliance?

The September 23, 2013 deadline for covered entities, business associates and their subcontractors to implement the new HIPAA rules is approaching quickly. In case you missed it, on January 25, 2013, the U.S. Department of...more

What Your Copier has Seen Cannot Be Unseen (Unless It's Wiped): Avoid HIPAA Exposure

The next time you walk by your office copier or fax machine, plug a flash drive into a universal serial bus port on your computer, or pull your smartphone out of your pocket, consider the amount of data that has crossed...more

Labor Letter, August 2013: NLRB Taking Close Look At Photography Policies

In February of 2009, a Wisconsin medical center fired several nurses after they electronically posted patient x-rays to their Facebook page, revealing the presence of a potentially embarrassing foreign object. As a result,...more

International Employment Law Review: August 2013 - Issue 4: Recent Employment Law Developments in France

Legislation - Interprofessional National Agreement and Law on Employment Security Passed - On January 11, 2013, social partners at national level agreed to an interprofessional agreement “for a new economic and...more

Privacy Monday – August 5, 2013

Privacy bytes, gaffes, and goofs for the first Monday in August – New Hampshire Bank Victimized by Malware: Manchester, NH-based St. Mary’s Bank, the oldest credit union in the United States, has begun notifying...more

HIPAA and the Omnibus Rule: How to Assess Whether and What your Company Must Do to Comply

A key amendment to the Health Insurance Portability and Accountability Act (“HIPAA”) called the “Omnibus Rule” took effect on March 26, 2013. The Omnibus Rule impacts both companies that directly collect protected health...more

Is Your Firewall On? Are You Sure? Idaho State University Settles Privacy Rule Violations for $400,000

The HHS Office of Civil Rights (OCR) recently announced a $400,000 settlement with Idaho State University (ISU) following a lengthy investigation of the privacy and security practices at ISU outpatient clinics. In addition to...more

New HIPAA Omnibus Regulations – What Employers Who Sponsor Group Health Plans Need to Know to Comply

On January 25, 2013, the Department of Health and Human Services (HHS) published final regulations that modify the Privacy, Security, Enforcement and Breach Notification Rules issued pursuant to the Health Insurance...more

Employers Take Note: Final HIPAA Rules Mandate New Obligations for Group Health Plans

Group Health Plans - Employers that sponsor group health plans for their employees should pay careful attention to the newly announced final omnibus rule amending the Health Insurance Portability and Accountability Act...more

OCR Issues Final Modifications to the HIPAA Privacy, Security, Breach Notification and Enforcement Rules to Implement the HITECH...

On January 25, 2013, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) published a final rule (Final Rule) containing modifications to the privacy standards (Privacy Rule), security...more

HIPAA Alert: Action Steps To Reach Compliance

As discussed in two prior HIPAA alerts, a final, 563-page Omnibus HIPAA Rule was released by the Department of Health and Human Services Office of Civil Rights to strengthen HIPAA’s security and privacy protections. The final...more

The New HIPAA Omnibus Rule & Your Liability — A Detailed Review

As we have reported in this blog, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently released final regulations containing modifications to the HIPAA Privacy, Security, Enforcement, and...more

Expanding The Reach Of HIPAA Data Security And Privacy Requirements

In this information technology era, it is little wonder that the Obama Administration has made enforcement of data security and privacy protections a top priority. The enforcement emphasis reflects public opinion favoring...more

HIPAA Rules Overhaul Ups Compliance Ante

Originally posted in Hartford Business Journal on February 11th, 2013. Attention all medical providers, hospitals and any other covered entity or business associate under HIPAA. On Jan. 17, the U.S. Department of Health...more

New HIPAA Rule Imposes Data Security and Privacy Obligations Directly Upon Vendors and Contractors of Covered Entities

On January 25, 2013, the Department of Health and Human Services ("HHS") published the Final Rule to the Health Insurance Portability and Accountability Act of 1996 ("HIPAA")'s Data Security and Privacy Rules. The Final Rule...more

Omnibus Final Rule Issued on HIPAA/HITECH Act: Significant Changes for ‘Business Associates’

On January 25, 2013, the Department of Health and Human Services published the much-anticipated Omnibus Final Rule (the “Final Rule”), which, with respect to business associates and their subcontractors, conforms HIPAA’s...more

What Employers That Maintain Group Health Plans Need to Know About the HIPAA Omnibus Regulations

On January 25, 2013, the Department of Health and Human Services (HHS) published final regulations that modify the Privacy, Security, Enforcement and Breach Notification Rules issued pursuant to the Health Insurance...more

Breaking Down The HIPAA Rule Changes: Part 2 Of 5 - Changes Affecting Who Is A Business Associate And New Business Associate...

In This Issue: - Expansion of, Clarifications to, and Explicit Inclusions in the Definition of BA - BAs’ Direct Liability Under the Final Rule - BAAs: Required Provisions Under the Final Rule and the Compliance...more

A Detailed Analysis of Changes to HIPAA and the Implications for Healthcare Providers and Others in the Healthcare Industry: HIPAA...

Changes to the HIPAA Enforcement Rule - Background: On October 30, 2009, HHS issued an interim final rule revising the Enforcement Rule to incorporate provisions of the HITECH Act. The NPRM then proposed a number of...more

What Do Employers Really Need to Know About the New HIPAA/HITECH Omnibus Final Rule?

The Health Insurance Portability and Accountability Act/Health Information Technology for Economic and Clinical Health Act Omnibus Rule, published in the Federal Register Jan. 25, makes many changes to the HIPAA Privacy Rule,...more

Burr Alert: New HIPAA Rules Issued: “Sweeping” Changes For Healthcare Providers And Business Associates

On January 17, 2013, the Department of Health and Human Services (“HHS”) released its long awaited final HIPAA rule, which significantly expands certain obligations for healthcare providers and their business associates (the...more

28 Results
|
View per page
Page: of 2