News & Analysis as of

Business Associates Notice Requirements

Business Associates can refer broadly to individuals engaged in business relationships with one another. However, in the HIPAA context, the term has a specific statutory meaning and those characterized as... more +
Business Associates can refer broadly to individuals engaged in business relationships with one another. However, in the HIPAA context, the term has a specific statutory meaning and those characterized as business associates have expanded data protection obligations and duties. Essentially, a business associate under HIPAA is a person or entity that performs certain functions or services which necessitates exposure to protected health information on behalf of a covered entity. Typical business associate functions include: claims processing or administration, data analysis, billing, etc.    less -
BCLP

Action Items as a Result of HIPAA Privacy Rule Modifications

BCLP on

On April 22, 2024, the U.S. Department of Health and Human Services (“HHS”) issued new regulations under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) that impose new restrictions on the use and...more

Venable LLP

Federal Trade Commission and U.S. Department of Health and Human Services Issue Warnings Related to Use of "Online Tracking...

Venable LLP on

The Federal Trade Commission (FTC) and the U.S. Department of Health and Human Services' Office for Civil Rights (OCR) recently published a warning letter that they jointly sent to more than 130 hospital systems and...more

Holland & Knight LLP

Important FTC Rules for Health Apps Outside of HIPAA

Holland & Knight LLP on

The Federal Trade Commission (FTC) adopted a policy statement on Sept. 15, 2021, emphasizing that developers of digital health apps, connected devices and other health products have obligations under the Health Breach...more

Health Care Compliance Association (HCCA)

After a Breach Is Too Late: Ensure BA, Subcontractor Compliance Now

Report on Patient Privacy 21, no. 3 (March 2021) - Sometime during the fall, a worker for a subcontractor of Humana Inc. decided to share actual member information from medical records via a Google document with people he...more

Holland & Hart - Health Law Blog

Use of PHI for Non-Patient Purposes

In an era of decreasing reimbursement and rapidly expanding opportunities associated with “big data”, healthcare entities may be looking for ways to monetize protected health information (“PHI”) for their own, non-patient...more

McDermott Will & Emery

California Bill Proposes CCPA Exceptions for HIPAA De-identified Information, Other Health Data

McDermott Will & Emery on

On January 6, 2020, the California State Senate’s Health Committee unanimously approved California AB 713, a bill that would amend the California Consumer Privacy Act (CCPA) to except from CCPA requirements additional...more

Mintz - Privacy & Cybersecurity Viewpoints

Privacy Monday – September 23, 2013: Today Is HIPAA Compliance Day – 5 Things That You Should Have Done

Today’s the day! Today marks the long-awaited compliance date for the HIPAA Omnibus Rule. In case you have put any thoughts of compliance with the Omnibus Rule out of your mind, you can no longer escape. Here...more

Davis Wright Tremaine LLP

Breach Notification: New Rules!

If you sponsor a group health plan that is subject to the HIPAA Privacy and Security Rules, it is time to review and revise your policies and procedures and re-train your employees regarding the proper procedures when...more

Proskauer - Employee Benefits & Executive...

More To Do’s to Add to Your 2013 Health Plan Compliance Calendar – Don’t Forget About HIPAA/HITECH

For much of 2013, group health plan sponsors have been gearing up for the compliance challenges associated with the Affordable Care Act. There is no doubt that much of the planning, focus and energy trained on the next round...more

Poyner Spruill LLP

Scripts - April 2013

Poyner Spruill LLP on

In This Issue: - Key Provisions In the Final Omnibus HIPAA/HITECH Rules and What They Mean for You - NLRB and EEOC May Target Employer Efforts to Keep Employees Quiet During Internal Investigations -...more

Smith Anderson

Newly Effective HIPAA Omnibus Rule Makes Sweeping Changes to HIPAA

Smith Anderson on

The long-awaited final omnibus rule (Omnibus Rule) that modifies the Health Insurance Portability and Accountability Act of 1996 (HIPAA) [1] took effect last week, on March 26, 2013. Leon Rodriguez, Director of the U.S....more

Davis Wright Tremaine LLP

Time to Take Advantage of HIPAA Omnibus Rule's "Good News": Fundraising, Research, and Student Immunization Records

The Omnibus Rule went into effect on March 26, 2013. While covered entities and business associates have until Sept. 23, 2013, to comply with new restrictions and obligations, they can take advantage of the rule’s benefits...more

Burr & Forman

Burr Alert: Employer Obligations Under New HIPAA Rules

Burr & Forman on

With all of the attention garnered by healthcare reform, it would be easy to overlook the new HIPAA rules (the "Rules") applicable to covered entities under HIPAA, which include employer group health plans. Compliance with...more

Mintz - Health Care Viewpoints

Countdown Begins for HIPAA Omnibus Rule Compliance

The HIPAA Omnibus Rule goes into effect today, which officially starts the clock for covered entities, business associates, and their subcontractors to begin updating their agreements, forms, policies, procedures, and...more

Winstead PC

What We Need to Do to Comply with the Final HIPAA Rule: A Summary of the Privacy Obligations for Health Care Providers, Health...

Winstead PC on

On January 25, 2013, the U.S. Department of Health and Human Services (HHS) published the highly anticipated Omnibus Rule, which makes extensive changes (as promulgated by the Health Information Technology for Economic and...more

Baker Donelson

HITECH and HIPAA: The Final Rule

Baker Donelson on

The final rule implementing new obligations under HITECH and changing obligations under HIPAA is finally out. Covered entities and business associates need to come into compliance with these requirements by September 23,...more

Polsinelli

New HIPAA Regulations Require Action From Group Health Plans

Polsinelli on

On January 17, 2013, the U.S. Department of Health and Human Services (HHS) released final regulations under the Health Insurance Portability and Accountability Act (HIPAA), which implement changes made by the Health...more

Baker Donelson

Don't Get Pinched by New HHS PHI Rules

Baker Donelson on

HHS has released its much-anticipated final omnibus rule about protected health information. The rule addresses privacy and security issues, including defining a business associate and expanding individuals' rights to...more

McDermott Will & Emery

New HIPAA Regulations Require Action by Group Health Plans

Final HIPAA privacy and security regulations issued by the U.S. Department of Health and Human services will require action by group health plan sponsors by September 2013....more

Cozen O'Connor

Highlights of the Omnibus HIPAA/HITECH Final Rule

Cozen O'Connor on

On January 25, 2013, the Office of Civil Rights (OCR) of the Department of Health & Human Services (HHS) published the long-awaited omnibus final regulation governing health data privacy, security and enforcement (Omnibus...more

Poyner Spruill LLP

Final HIPAA/HITECH Rules: Compliance Actions for Employee Benefit Plans

Poyner Spruill LLP on

The Department of Health and Human Services recently released final regulations modifying the HIPAA Privacy, Security Breach Notification and Enforcement Rules (the “Omnibus Rule”). These regulations have far-reaching effects...more

BakerHostetler

Special Edition: Health Law Update - February 28, 2013

BakerHostetler on

In This Issue: - A Baker's Dozen of Significant Changes From the HIPAA/HITECH Rule 1. Business Associates and Subcontractors 2. Breach Notification 3. Covered Entity Organizational Structures 4. Cloud...more

Snell & Wilmer

New HIPAA Omnibus Regulations – What Employers Who Sponsor Group Health Plans Need to Know to Comply

Snell & Wilmer on

On January 25, 2013, the Department of Health and Human Services (HHS) published final regulations that modify the Privacy, Security, Enforcement and Breach Notification Rules issued pursuant to the Health Insurance...more

McDermott Will & Emery

OCR Issues Final Modifications to the HIPAA Privacy, Security, Breach Notification and Enforcement Rules to Implement the HITECH...

McDermott Will & Emery on

On January 25, 2013, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) published a final rule (Final Rule) containing modifications to the privacy standards (Privacy Rule), security...more

Mintz - Privacy & Cybersecurity Viewpoints

The New HIPAA Omnibus Rule & Your Liability — A Detailed Review

As we have reported in this blog, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently released final regulations containing modifications to the HIPAA Privacy, Security, Enforcement, and...more

60 Results
 / 
View per page
Page: of 3

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide