Rebecca Williams

Rebecca Williams

Davis Wright Tremaine LLP

Contact
View Bio
RSS

Latest Posts › Compliance

Share:

HIPAA Security Rule Resolves To Hit the Gym and Bulk Up

For more than 20 years, the HIPAA Security Rule has been virtually unchanged other than extending its scope beyond covered entities to also include business associates. During that time, technology has changed, cybersecurity...more

1/9/2025  /  Compliance , Cybersecurity , Data Privacy , Data Protection , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , HIPAA Security Rule , Notice of Proposed Rulemaking (NOPR) , OCR , Proposed Rules , Risk Management , Trump Administration

Whether Naughty or Nice, Compliance Deadline for HIPAA Reproductive Care Privacy Is Coming to Town

We just want to provide a friendly reminder that, before key staff depart for the holidays, HIPAA covered entities and business associates should finalize their compliance with the 2024 HIPAA amendments related to...more

12/19/2024  /  Compliance , Covered Entities , Data Privacy , Deadlines , Department of Health and Human Services (HHS) , Disclosure Requirements , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , New Amendments , OCR , PHI , Reproductive Healthcare Issues , Settlement

Checklist of Employer Considerations for Remote Work Policies

The COVID-19 pandemic and the proliferation of employees working remotely has prompted employers of every size to contend with new questions about laws applicable to their workers in distant locations. Depending on whether...more

2/2/2021  /  Compliance , E-3 , Employee Benefits , Employees , Flexible Work Arrangements , H-1B , Hiring & Firing , Intellectual Property Protection , Reimbursements , Remote Working , Telecommuting , Wage and Hour

FTC’s 50th Data Security Settlement Sends a Message: Be Careful with Overseas Contractors

The Federal Trade Commission (FTC) sent a message about the importance of imposing appropriate security measures on—and monitoring—vendors with access to confidential consumer information. The FTC issued a 20-year consent...more

2/5/2014  /  Compliance , Contractors , Data Breach , Data Protection , Due Diligence , Federal Trade Commission (FTC) , Vendors

It’s Not Enough to Notify: Don’t Forget the Policies, Risk Analyses, and Training

HIPAA compliance ended with a bang in 2013, with the feds issuing the first settlement involving a health provider’s failure to have breach notification policies and procedures in place. On Dec. 24, 2013, the Department of...more

1/8/2014  /  Compliance , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , OCR , Security Rule , Training

One Week to Get Business Associate Agreements Executed Under HIPAA Omnibus Rule’s Grandfather Clause

On Jan. 17, 2013, the long-awaited HIPAA “Omnibus Rule” went on display at the Federal Register, finalizing changes to the HIPAA Privacy, Security, Breach Notification, and Enforcement Rules....more

1/21/2013  /  Business Associates , Compliance , Data Breach , Data Protection , Enforcement , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Omnibus Rule , Notice Requirements

HIPAA Omnibus Rule Released

At long last, after much delay and speculation, the HIPAA Omnibus Rule has been placed on display at the Federal Register in preparation for formal publication....more

1/18/2013  /  Business Associates , Compliance , Covered Entities , Data Breach , Enforcement , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Omnibus Rule , Marketing , Notice Requirements , PHI
7 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide