Adam Greene

Adam Greene

Davis Wright Tremaine LLP

Contact
View Bio
RSS

Latest Posts › Breach Notification Rule

Share:

FTC Finalizes Expansion of Health Breach Notification Rule's Broad Applicability to Unauthorized App Disclosures

The FTC issued a final rule to lock in changes to the Health Breach Notification Rule (HBNR) that it proposed in May 2023. While the HBNR began as a breach notification rule seemingly focused on a narrow set of applications...more

5/10/2024  /  Breach Notification Rule , Cybersecurity , Data Breach , Data Security , Enforcement , Federal Trade Commission (FTC) , Final Rules , Health Insurance Portability and Accountability Act (HIPAA) , PHI

Old Rule, New Tricks: HHS Finalizes Most Substantial Changes to Substance Use Disorder Confidentiality Rule in Decades

The long-anticipated final rule addressing substance use disorder (SUD) records at 42 C.F.R. Part 2, commonly referred to as Part 2, is here. The final rule is a joint undertaking by the U.S. Department of Health and Human...more

2/21/2024  /  Breach Notification Rule , CARES Act , Civil Monetary Penalty , Confidentiality Policies , Consent Agreements , Department of Health and Human Services (HHS) , Disclosure Requirements , Enforcement , Final Rules , Health Insurance Portability and Accountability Act (HIPAA) , Notice of Proposed Rulemaking (NOPR) , OCR , Penalties , PHI , Risk Assessment , SAMHSA , Substance Abuse

LEAP, Don't Run, to Make this YEAR's Deadline: HIPAA Small Breach Notifications Due February 29

February 29, 2024, is the date by which HIPAA-covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of all "small" breaches of unsecured protected health information that...more

2/16/2024  /  Breach Notification Rule , Department of Health and Human Services (HHS) , Filing Deadlines , Health Insurance Portability and Accountability Act (HIPAA) , LEAP , OCR , Reporting Requirements

FTC Health Breach Notification Rule

This year has started with the Federal Trade Commission's (FTC) renewed attention to its Health Breach Notification Rule (Breach Rule) and the publication of the Health Privacy resource page to help companies with their...more

2/10/2022  /  Breach Notification Rule , Federal Trade Commission (FTC) , Health Insurance Portability and Accountability Act (HIPAA) , HITECH Act , Medical Records , PHI

Calendar Year 2020 HIPAA Small Breach Notifications Due March 1, 2021

March 1, 2021, is the due date for HIPAA-covered entities to notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) about "small" breaches of unsecured protected health information discovered...more

2/24/2021  /  Breach Notification Rule , Covered Entities , Data Breach , Data Security , Health Insurance Portability and Accountability Act (HIPAA) , OCR , PHI

HIPAA Small Breach Notifications Due March 1

March 1, 2019 is the date by which HIPAA covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of “small” breaches of unsecured protected health information that were...more

2/27/2019  /  Breach Notification Rule , Data Breach , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Notification Requirements , OCR , Personally Identifiable Information

OCR Sets Sights on Smaller HIPAA Breaches

Covered entities and business associates can expect increased scrutiny for breaches of unsecured protected health information affecting fewer than 500 individuals. Starting August 2016, the U.S. Department of Health and Human...more

9/8/2016  /  Breach Notification Rule , Business Associates , Covered Entities , Data Breach , Data Security , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , OCR , PHI

HIPAA Enforcement Actions by the Numbers

Protecting patient information is a central duty for both covered entities and business associates under the Health Insurance Portability and Accountability Act (HIPAA). Should a HIPAA-subject entity ever fail to protect...more

6/29/2016  /  Breach Notification Rule , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , OCR , PHI

OCR Phase 2 HIPAA Audits Are Here: What to Expect While You’re Expecting (an Audit)

The Phase 2 audit program for HIPAA compliance is under way. The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced that it had launched the Phase 2 audits to examine and assess how covered...more

3/29/2016  /  Breach Notification Rule , Business Associates , Covered Entities , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Audits , HIPAA Breach , OCR , PHI

Employers: What the Anthem Breach Means to You

On Feb. 4, 2015, Anthem announced a data breach involving the personal information of more than 80 million individuals resulting from what it characterized as a sophisticated, targeted cyber-attack. Group health plans may be...more

2/10/2015  /  Anthem Insurance , Best Practices , Breach Notification Rule , Corporate Counsel , Cyber Attacks , Cybersecurity , Health Insurance Portability and Accountability Act (HIPAA) , Personally Identifiable Information

Good News: California Extends Its Medical Data Breach Notification Requirement From 5 to 15 Days

On Sept. 18, 2014, California’s governor approved Assembly Bill 1755, extending California’s stringent breach notification deadline for medical information breaches from five business days to 15 business days for clinics,...more

10/13/2014  /  Breach Notification Rule , Data Breach , EHR , Healthcare , Personally Identifiable Information , PHI , Popular
11 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide