Amy Leopard

Amy Leopard

Bradley Arant Boult Cummings LLP

Contact
View Bio
RSS

Latest Posts › Data Security

Share:

Top 10 takeaways from the new HIPAA security rule NPRM

On Jan. 6, 2025, the U.S. Department of Health and Human Services (HHS) proposed new regulations to enhance cybersecurity protections for electronic protected health information (ePHI) under the Health Insurance Portability...more

3/20/2025  /  Business Associates , Comment Period , Cybersecurity , Data Privacy , Data Protection , Data Security , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Security Rule , Incident Response Plans , Notice of Proposed Rulemaking (NOPR) , NPRM , Proposed Regulation , Regulatory Agenda , Regulatory Oversight , Regulatory Requirements , Risk Assessment , Technology Sector

AI Meets HIPAA Security: Understanding HHS’s Risk Strategies and Proposed Changes

In this final blog post in the Bradley series on the HIPAA Security Rule notice of proposed rulemaking (NPRM), we examine how the U.S. Department of Health and Human Services (HHS) Office for Civil Rights interprets the...more

3/6/2025  /  Artificial Intelligence , Business Associates , Cybersecurity , Data Privacy , Data Security , Department of Health and Human Services (HHS) , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , PHI , Risk Management

The Why Behind the HHS Proposed Security Rule Updates

In this week’s installment of our blog series on the U.S. Department of Health and Human Services’ (HHS) HIPAA Security Rule updates in its January 6 Notice of Proposed Rulemaking (NPRM), we are exploring the justifications...more

2/27/2025  /  Cybersecurity , Data Privacy , Data Protection , Data Security , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Security Rule , Risk Management , Vulnerability Assessments

HIPAA Security Rule Updates: New Business for Business Associates

Bradley has launched a multipart blog series on the U.S. Department of Health and Human Services’ (HHS) proposed changes to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule, beginning last...more

1/23/2025  /  Business Associates , Business Associates Agreement (BAA) , Data Security , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Security Rule , Privacy Laws , Proposed Rules , Regulatory Requirements , Risk Management

Introducing Bradley’s Series on HHS’s Proposed HIPAA Security Rule Updates

Bradley is launching a multipart blog series on the U.S. Department of Health and Human Services’ (HHS) proposed changes to strengthen cybersecurity protections for electronic protected health information (ePHI) regulated...more

1/16/2025  /  Compliance , Cybersecurity , Data Privacy , Data Security , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Employer Group Health Plans , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Security Rule , Notice of Proposed Rulemaking (NOPR) , NPRM , OCR , Risk Management

HHS Develops Strategy to Improve Security in the Healthcare Sector

The Department of Health & Human Services (HHS) released a concept paper outlining its strategy for improving cybersecurity infrastructure within the healthcare sector. The paper calls for proposing healthcare-specific...more

12/12/2023  /  Cybersecurity , Data Protection , Data Security , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , Privacy Laws

OCR Breach Reporting: 2018 “Small Breach” Report Due Friday, March 1st - Healthcare Alert

Don’t forget that the required end-of-the-year reporting of any small breaches of unsecured protected health information (PHI) that were discovered in 2018 is coming up. Under the Health Insurance Portability and...more

2/13/2019  /  Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security , Filing Deadlines , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , OCR , PHI , Reporting Requirements

Largest U.S. Health Data Breach To Date Results in $16 Million HIPAA Settlement - Healthcare Alert

On October 15, 2018, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) announced that Anthem, Inc. will pay $16 million to settle OCR’s investigation of its potential violations of the Health...more

10/24/2018  /  Anthem Insurance , Corrective Actions , Cyber Attacks , Data Breach , Data Privacy , Data Protection , Data Security , Electronic Protected Health Information (ePHI) , Hackers , Health Care Providers , Health Insurance , Health Insurance Portability and Accountability Act (HIPAA) , OCR , Personally Identifiable Information , Phishing Scams , Settlement

Summary Judgment: Recent HIPAA Case Emphasizes Encryption, Action on Risk Analysis - AHLA Health Information and Technology...

On June 18, 2018, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced that an HHS Administrative Law Judge (“ALJ”) granted summary judgment to OCR in an enforcement action...more

8/2/2018  /  Administrative Hearings , Administrative Law Judge (ALJ) , AHLA , Civil Monetary Penalty , Confidential Information , Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security , Department of Health and Human Services (HHS) , Disclosure Requirements , Electronic Protected Health Information (ePHI) , Encryption , Enforcement Actions , Health Information Technologies , Health Insurance Portability and Accountability Act (HIPAA) , OCR , Patient Privacy Rights , Risk Assessment , Summary Judgment

Data Breach Response Planning: Laying the Right Foundation

Part of Bradley Arant’s Privacy and Information Security Team’s seven-part Data Breach Toolkit Webinar Series, the “Data Breach Response Planning: Laying the Right Foundation” webinar, led by Paige Boshell and Amy Leopard,...more

9/17/2015  /  Banking Sector , Banks , Breach Notification Rule , Cyber Attacks , Cyber Crimes , Cyber Threats , Cybersecurity , Data Protection , Data Security , Department of Justice (DOJ) , Federal Trade Commission (FTC) , FFIEC , Financial Institutions , FTC v Wyndham , Hackers , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , Incident Response Plans , Information Sharing , NIST , Privacy Concerns , Wyndham
10 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide