Following the Office for Civil Rights (OCR) recent publication of four settlements as part of a new Risk Analysis Audit Initiative. We explore the current regulatory language for Risk Analysis, the proposed language for Risk...more
4/16/2025
/ Compliance ,
Covered Entities ,
Data Breach ,
Enforcement Actions ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Security Rule ,
HIPAA Violations ,
OCR ,
Ransomware ,
Risk Assessment ,
Risk Management
The cyber breach at Change Healthcare in 2024 stands out as one of the most significant cyber-attacks in recent memory. Its repercussions extend far beyond immediate industry disruptions, resonating deeply in regulatory...more
10/7/2024
/ Centers for Medicare & Medicaid Services (CMS) ,
Compliance ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Department of Health and Human Services (HHS) ,
Healthcare ,
HIPAA Privacy Rule ,
Incident Response Plans ,
MACs ,
OCR ,
Popular ,
Privacy Laws ,
Ransomware ,
Reimbursements ,
Risk Assessment
On May 16, 2023, the U.S. Department of Health and Human Services (DHHS) through the Office for Civil Rights (OCR) announced a settlement of potential violations of the Health Insurance Portability and Accountability Act...more
9/14/2023
/ Business Associations ,
Corrective Action Plans (CAPs) ,
Data Breach ,
Department of Health and Human Services (HHS) ,
Hackers ,
HIPAA Violations ,
OCR ,
PHI ,
Risk Management ,
Settlement ,
Subcontractors