From OCR to AI The Future of Media and Image Analysis in eDiscovery
HHS Office for Civil Rights Director Melanie Fontes Rainer on Progress and News at OCR
ERISA Blog | Changes to the HIPAA Privacy Rules A Primer for Self-Insured Group Health Plans
Podcast - Data Privacy and Tracking Technology Compliance
Patient Data and Privacy
2022 DSIR Deeper Dive: OCR’s Right of Access Initiative
HIPAA Tips With Williams Mullen - Telehealth After the Pandemic
Relaxed HIPAA Restrictions For Providers Using Telehealth
Webinar: Investigating and Resolving Sexual Assaults on Campus
It was brought to the attention of the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) that healthcare providers may be violating HIPAA in certain instances where they deny parental access to a...more
Key Takeaways: 42 CFR Part 2 (Part 2) Final Rule: The U.S. Department of Health and Human Services (HHS) issued a final rule updating privacy protections for substance use disorder (SUD) records created by an SUD program...more
Fairfax Cty. Sch. Bd. v. McMahon, Civil Action No. 1:25-cv-1432, 2025 U.S. Dist. LEXIS 179299, at *5 (E.D. Va. Sep. 5, 2025). District Court for the Eastern District of Virginia declines to rule on the merits of a school...more
Ransomware cyber attacks have been a prominent threat to the healthcare industry. In this case, First Choice Dental, a large dental practice with multiple locations across Wisconsin, was targeted by hackers in October 2023....more
As civil rights law practitioners, we often find ourselves tracing the edges of complex issues, trying to determine where protected expression ends and discriminatory conduct begins. Nowhere is this more evident than in the...more
Inland barge transportation is a cornerstone of the U.S. energy supply chain, facilitating the movement of crude oil, refined products, and renewable fuels across the nation’s waterways. However, the logistics involved are...more
Our Health Care and Privacy, Cyber & Data Strategy groups review the status of the proposed update to the HIPAA Security Rule....more
To help you stay on top of the latest news, our AI practice group has compiled a roundup of the developments we are following....more
In the fast-paced and critical healthcare services field, patients expect robust adherence to security safeguards for their personal data and electronic protected health information (ePHI). Especially since patient data is...more
Ideal for professionals with some compliance knowledge and experience, HCCA’s Healthcare Privacy Compliance Academy offers practitioners a deeper understanding of effective compliance management in a healthcare setting. The...more
Growing up, my family played an unusual game around the dinner table. After sharing about our days, my dad (also a health care attorney) would ask my sisters and me to argue. He’d pick a topic, such as why my younger sister...more
A recent breach of protected health information (PHI) by the University of Michigan might be a painful experience for some 1,000 individuals who were potential subjects in a research trial. But it also might be painful for...more
On September 30, 2025, the Office for Civil Rights of the Department of Health and Human Services (OCR) announced a settlement with Cadia Healthcare Facilities, a provider of rehabilitation, skilled nursing and long-term care...more
A company that runs five nursing homes in Delaware recently agreed to pay a $182,000 fine to settle an investigation for alleged HIPAA violations. The U.S. Department of Health and Human Services’ Office for Civil Rights...more
HIPAA privacy and security requirements are complex, and the failure to comply can be costly. When a security incident involving protected health information (PHI) occurs, the U.S. Department of Health and Human Services,...more
On September 30th, 2025, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a settlement with Cadia Healthcare Facilities for potential violations of the HIPAA Privacy and Breach...more
Businesses across many industries naturally want to showcase their satisfied customers. Whether it’s a university featuring successful graduates, a retailer highlighting happy shoppers, or a healthcare facility showcasing...more
Earlier this month, the U.S. Department of Health and Human Services (HHS) published a press release announcing a “crackdown on health data blocking” as the HHS Secretary had directed HHS to “increase resources dedicated...more
In November 2024, the U.S. Department of Health and Human Services’ Office of Civil Rights announced a new enforcement initiative focusing on the requirement under the Health Insurance Portability and Accountability Act of...more
Stay ahead of current & emerging healthcare privacy compliance trends - This virtual event will address the latest updates, risks, and emerging issues in privacy, as well as provide insights regarding enforcement...more
Overview - On August 28, 2025, the U.S. Department of Education's Office for Civil Rights ("OCR") announced that it found Denver Public Schools in violation of Title IX for converting a sex-separated multi-stall girls'...more
On Aug. 11, 2025, the Department of Health and Human Services’ Office for Civil Rights (OCR) announced updates to the Privacy Rule’s frequently asked questions (FAQs)....more
Report on Patient Privacy 25, no. 9 (September, 2025) - Covered entities (CEs) and business associates (BAs) might be forgiven if the most recent HHS Office for Civil Rights (OCR) HIPAA enforcement action evoked little more...more
After President Donald Trump issued an executive order titled “Keeping Men Out of Women’s Sports,” the National Collegiate Athletic Association (NCAA) changed its policies the next day about the inclusion of transgender...more
On August 26, 2025, the U.S. Department of Health and Human Services (“HHS”) displayed in the Federal Register a delegation of authority from Secretary Robert F. Kennedy, Jr., to the Office for Civil Rights (“OCR”) to...more