Forrest Campbell Jr. on OCR

OIG Recommends Changes to HIPAA Audit Program to Strengthen Data Protections, Implications for Regulated Entities

The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is required by law to perform periodic audits of covered entities and business associates to ensure their compliance with HIPAA Security Rule...more

12/5/2024 / Audits , Business Associates , Covered Entities , Cyber Attacks , Cybersecurity , Data Protection , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , HIPAA Audits , OCR , OIG , Privacy Laws

Business Associate Victim of Ransomware Attack Pays $100,000 to HHS OCR

Is your organization a business associate? You could be subject to enforcement action if you fail to protect health information within your control from ransomware attacks. In October, for the first time, the U.S....more

12/6/2023 / Best Practices , Business Associates , Cyber Incident Reporting , Data Breach , Data Protection , Data Security , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Enforcement Actions , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , OCR , Risk Management , Settlement

HIPAA Requirements for Using Online Tracking Technologies—What Health Care Providers Need to Know

Health care providers should evaluate their use of “tracking technologies” on their websites and mobile applications (apps) for compliance with HIPAA. On December 1, 2022, the Office for Civil Rights (OCR) issued a bulletin...more

4/6/2023 / Data Privacy , Data Security , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Mobile Apps , OCR , PHI , Risk Management , Technology , Third-Party , Tracking Systems , Web Tracking , Websites

Office for Civil Rights Settles Five Investigations in HIPAA Right of Access Initiative: Don’t Give Your Patients Any Reason to...

Recent enforcement actions by the Office for Civil Rights (OCR) underscore the importance of providing patients with copies of their protected health information (PHI) as required by HIPAA. Failure to provide access exposes...more

9/17/2020 / Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Privacy Rule , Investigations , Medical Records , OCR , Patient Privacy Rights , Patients , Personally Identifiable Information , PHI , Right-To-Access

Forrest Campbell Jr.

Brooks Pierce

Popular Topics by This Author

Latest Posts › OCR

OIG Recommends Changes to HIPAA Audit Program to Strengthen Data Protections, Implications for Regulated Entities

Business Associate Victim of Ransomware Attack Pays $100,000 to HHS OCR

HIPAA Requirements for Using Online Tracking Technologies—What Health Care Providers Need to Know

Office for Civil Rights Settles Five Investigations in HIPAA Right of Access Initiative: Don’t Give Your Patients Any Reason to...

Forrest Campbell Jr.

Brooks Pierce

Popular Topics by This Author

Latest Posts › OCR

OIG Recommends Changes to HIPAA Audit Program to Strengthen Data Protections, Implications for Regulated Entities

Business Associate Victim of Ransomware Attack Pays $100,000 to HHS OCR

HIPAA Requirements for Using Online Tracking Technologies—What Health Care Providers Need to Know

Office for Civil Rights Settles Five Investigations in HIPAA Right of Access Initiative: Don’t Give Your Patients Any Reason to...

"My best business intelligence, in one easy email…"