Aaron Maguregui

Aaron Maguregui

Foley & Lardner LLP

Contact
View Bio
RSS

Latest Posts › Audits

Share:

OCR Says HIPAA Audits Will Resume: OIG Makes Recommendations for Enhancement

Recognizing the increasing number of successful cyberattacks targeting health care organizations and their valuable patient data, the Office of the Inspector General (OIG) is calling for enhancements to the HIPAA audit...more

12/10/2024  /  Audits , Breach Notification Rule , Compliance , Cyber Attacks , Cybersecurity , Department of Justice (DOJ) , Enforcement , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Security Rule , Noncompliance , OCR , OIG , PHI , Vulnerability Assessments

Digital Health Apps Must Allow Users to Delete Accounts, Per New Apple App Store Rules

The regulatory scrutiny on telemedicine and digital health companies continues to tighten, whether it is privacy warning shots, new direct-to-consumer (DTC) advertising limits, a wave of reimbursement audits, or multistate...more

10/11/2021  /  Apple , Audits , Data Collection , Data Retention , Department of Justice (DOJ) , Digital Health , Federal Trade Commission (FTC) , Investigations , Mobile Apps , Privacy Policy , Risk Assessment , Telemedicine

Key Findings & Takeaways from OCR HIPAA Audit Findings

The Office of Civil Rights (OCR) at the U.S. Department of Health and Human Services recently published its findings from audits conducted in 2016 and 2017 of covered entities’ and business associates’ compliance with...more

1/15/2021  /  Audits , Covered Entities , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Breach Notification Rule , HIPAA Privacy Rule , Notice of Privacy Practices , Notice of Proposed Rulemaking (NOPR) , OCR , Right of Access , Risk Management , Security Risk Assessments

European Data Protection Board Issues Recommendations for Exports of Personal Data From the European Economic Area

As many organizations continue to struggle with the fallout from the July 2020 Schrems II decision from the European Court of Justice (“CJEU”), in November, the European Data Protection Board (“EDPB”) published two pieces of...more

12/2/2020  /  Audits , Data Transfers , Due Diligence , European Court of Justice (ECJ) , European Data Protection Board (EDPB) , European Economic Area (EEA) , Executive Orders , FISA , General Data Protection Regulation (GDPR) , New Guidance , Personal Data , Schrems I & Schrems II , Standard Contractual Clauses
4 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide