Despite the fact that Business Associates have been directly subject to and liable under the Health Insurance Portability and Accountability Act of 1996 and its implementing regulations (HIPAA) since February 18, 2010 the...more
A Massachusetts dermatology practice, Adult & Pediatric Dermatology, P.C. ("APDerm") recently agreed to pay $150,000 to settle potential violations of HIPAA Privacy, Security, and Breach Notification Rules. The settlement was...more
Nearly one year after a Massachusetts provider paid $1.5 million to settle potential HIPAA violations for the theft of an unencrypted laptop containing protected health information (PHI), providers are reminded once again of...more
In This Issue:
- Definition of “Unsecured Protected Health Information”
- Notice Requirements
- Action Items to Comply with the Breach Notification
- Excerpt from Definition of “Unsecured Protected Health...more
In This Issue:
- Brief Overview of Key Modifications in the Final Rule
- Suggested Action Items for Compliance with the Final Rule
..Covered Entities
..Business Associates
- Consequences of Noncompliance...more
2/1/2013
/ Business Associates ,
Compliance ,
Covered Entities ,
Data Breach ,
Department of Health and Human Services (HHS) ,
Enforcement ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HITECH Act ,
Notice Requirements ,
PHI ,
Third-Party
On January 17, 2013, the U.S. Department of Health and Human Services (HHS) issued an advance copy of the final omnibus rule which implements changes to the Health Insurance Portability and Accountability Act of 1996, and the...more
1/22/2013
/ Data Breach ,
Data Protection ,
Department of Health and Human Services (HHS) ,
Enforcement ,
GINA ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Omnibus Rule ,
HITECH Act ,
Notice Requirements ,
OCR ,
Privacy Policy