Updates to Statute 1557 that Healthcare Providers Need to Know
Privacy and Healthcare Business Associates with Isabella Porter
State Law Privacy Video Series | Healthcare Entities and Health Data
Gerry Blass on Healthcare Vendor Risk Management
AGG Talks: Technology - In the Balance: Interoperability and Security
Is Your Practice's Marketing HIPAA Compliant?
Relaxed HIPAA Restrictions For Providers Using Telehealth
Compliance Perspectives: Permissible Disclosures under HIPAA, Especially in the Time of COVID-19
Polsinelli Podcasts - Confusion to Clarity on the Future of the 340B Program
Polsinelli Podcast - HIPAA Changes Overview
The New York Voting Rights Act‘s (NYVRA) preclearance section takes effect on September 22, 2024. The new rule requires covered jurisdictions to seek “preclearance” of certain covered policy changes to their election and...more
On June 21, 2024, the Treasury Department released long-expected proposed regulations to curtail investments by U.S. persons (including investments by U.S. limited partners in non-U.S. pooled funds) and U.S.-controlled...more
On June 12, the Office of the New York State Attorney General (AG) proposed a new rule related to the New York Voting Rights Act (NYVRA)....more
On April 4, the Cybersecurity and Infrastructure Security Agency published a notice of proposed rulemaking setting out mandatory reporting requirements for covered entities that experience cybersecurity incidents or make...more
On April 4, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) published its much-anticipated Notice of Proposed Rule Making for the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA)....more
CISA's proposed rules will require organizations operating in U.S. critical infrastructure sectors to report cyber incidents within 72 hours and ransom payments within 24 hours. ...more
On March 15, 2022, the Cyber Incident Reporting for Critical Infrastructure Act of 2022 was signed into law. Generally, CIRCIA requires “covered entities,” defined as entities in certain critical infrastructure sectors, to...more
A sweeping array of businesses are another step closer to requirements to report cybersecurity incidents and ransomware payments to the federal government. On April 4, 2024, the U.S. Department of Homeland Security's (DHS)...more
On March 27, 2024, the Cybersecurity and Infrastructure Security Agency (CISA), an operational component of the Department of Homeland Security (DHS), posted for public inspection its long-anticipated notice of proposed...more
Along with its calendar year (CY) 2024 Medicare Outpatient Prospective Payment System (OPPS) proposed rule, the Centers for Medicare & Medicaid Services (CMS) have also published the long-awaited proposal to remediate the...more
340B Covered Entities (CEs) are getting a glimpse into what they can expect to be repaid due the fallout from CMS’ unlawful 340B payment reduction that was struck down by the U.S. Supreme Court in June 2022. CMS discussed a...more
HIPAA covered entities (CEs) longing for the opportunity to dispense with what some would call the more nettlesome aspects of notices of privacy practices (NPPs) will just have to be patient. For how long, no one is saying....more
Walking a middle path, the HHS Office for Civil Rights (OCR) published proposed amendments to the HIPAA Privacy Rule on April 17, 2023, to further safeguard the privacy of reproductive health care information. This comes in...more
The U.S. Department of Health and Human Services' (HHS) Office for Civil Rights (OCR) published a Notice of Proposed Rule Making (Proposed Rule) on April 12, 2023, proposing amendments to the Health Insurance Portability and...more
The SEC continues its overhaul of cybersecurity, cyber incident reporting, and privacy controls and requirements for industry registrants, their services providers, and corporate America generally. On March 15, 2023, the SEC...more
SECURE 2.0 Act - As part of a large year-end piece of legislation, the provisions known as SECURE 2.0 Act of 2022 (“SECURE 2.0”) were enacted into law. SECURE 2.0 represents a broadly bipartisan piece of legislation that...more
As a further reflection of its recent emphasis on “repeat offenders,” on December 12, the Consumer Financial Protection Bureau (CFPB) published a proposed rule with request for public comment that would require certain...more
Citing “policy and operational challenges” with the current 340B Administrative Dispute Resolution (ADR) Process, the US Department of Health and Human Services (HHS) has issued a new Proposed Rule to modify the current ADR...more
On November 29, 2022, the Health Resources and Services Administration (“HRSA”) published a notice of proposed rulemaking (“Proposed Rule”)[1] to implement an Administrative Dispute Resolution (“ADR”) process for resolving...more
President Biden signed into law the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) on March 15, 2022. The background and contours of CIRCIA are discussed in a previous update. CIRCIA authorizes and...more
On Aug. 4, the Department of Health and Human Services (HHS) published its proposed rule, Nondiscrimination in Health Care and Activities (Proposed Rule), to revise its regulations pertaining to Section 1557 of the...more
In June 2021, the Illinois Equal Pay Act (IEPA) was amended to add a requirement for certain Illinois businesses to obtain an equal pay registration certificate (EPRC). The Illinois Department of Labor (IDOL) issued its long...more
President Biden recently signed into law the Cyber Incident Reporting for Critical Infrastructure Act of 2022 as a part of a larger omnibus appropriations bill. The new law sets out mandatory reporting requirements for...more
On March 1, the Senate unanimously passed the Strengthening American Cybersecurity Act of 2022, which will require critical infrastructure companies to report significant cyber-incidents and all ransom payments to the...more
A significant expansion of rules relating to cybersecurity risks - particularly for the financial sector - is under consideration by the Securities and Exchange Commission (SEC). In public remarks last week, SEC Chair...more