News & Analysis as of

Office of Civil Rights Electronic Medical Records Protected Health Information

Ballard Spahr LLP

2024 HIPAA Developments

Ballard Spahr LLP on

Over the course of the past few months, the Office of Civil Rights (OCR) and the Office of the National Coordinator for Health Information Technology (ONC), both of which are divisions of the U.S. Department of Health and...more

Dickinson Wright

How Did They Get My Protected Health Information?

Dickinson Wright on

It is no secret that protected health information (or “PHI”) is more and more at risk for cybersecurity attacks. In 2022 (the most recent year this statistic is available), the Department for Health and Human Services Office...more

Quarles & Brady LLP

Substance Abuse Disorder Records (42 CFR Part 2) Final Rule Is Here!

Quarles & Brady LLP on

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) and Substance Abuse and Mental Health Services Administration (SAMHSA) released its anticipated Final Rule last week. The Final Rule revises...more

Alston & Bird

HHS and FTC Fire a Warning Shot at Healthcare Companies Using Online Tracking Technologies

Alston & Bird on

On July 20, 2023, the Office for Civil Rights (“OCR”) of the U.S. Department of Health and Human Services (“HHS”), and the Federal Trade Commission (“FTC”) published a joint letter sent to approximately 130 hospital systems...more

Akerman LLP - Health Law Rx

All Good Things Must Come to an End: The Expiration of OCR’s Enforcement Discretion

On April 11, 2023, the Department of Health and Human Services’ Office for Civil Rights (OCR) confirmed that four notifications of enforcement discretion regarding enforcement of the HIPAA Privacy, Security, and Breach...more

Nelson Mullins Riley & Scarborough LLP

Key Strategies for HIPAA-Compliant Use of Online Tracking Technologies

The use of online tracking technologies, which provide valuable insights into the behaviors of website and mobile application users, has become routine in today’s online ecosystem. Companies employ tracking technologies to...more

BakerHostetler

OCR Guidance on Use of Tracking Technologies Warrants Review of Website Tech

BakerHostetler on

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) issued guidance regarding covered entities’ and business associates’ use of tracking technologies (the Guidance). As discussed in greater detail...more

Bricker Graydon LLP

Are you regulated under HIPAA? Ensure your website or app’s user tracking is HIPAA compliant

Bricker Graydon LLP on

On December 1, 2022, the Centers for Medicare and Medicaid Services’ Office of Civil Rights (OCR) issued new guidance to covered entities and business associates regarding website and application user data tracking and how...more

Hogan Lovells

Not so fast: HHS OCR warns that HIPAA applies to online tracking technologies

Hogan Lovells on

Covered Entities and Business Associates must comply with HIPAA in their use of online tracking technologies, including cookies, pixels or similar code. The U.S. Department of Health and Human Services (HHS), Office for Civil...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - March 6th - 9th, Phoenix, AZ

Designed for professionals with some compliance knowledge and experience, HCCA’s Healthcare Privacy Compliance Academy is ideal for practitioners who want a deeper understanding of effective compliance management in a...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - December 5th - 8th, Anaheim, CA

Each Academy provides three-and-a-half days of classroom-style training covering the latest laws, regulations, and developments to help you effectively manage your organization’s compliance program. They are ideal for...more

Jackson Lewis P.C.

OCR Reminds Healthcare Providers and Their Business Associates – You Need an Incident Response Plan!

Jackson Lewis P.C. on

We have been quite busy this October, which happens to be National Cybersecurity Awareness Month. But, we did not want to let the month go by without some recognition; and we are grateful to the HHS Office for Civil Rights...more

Burr & Forman

Cyber Attacks on Health Care Entities Increasing

Burr & Forman on

Cyber-attacks on health care entities are becoming increasingly frequent, and the resulting data breaches are often complex. In the event of a cyber-attack, health care entities and their business associates must adhere to...more

Robinson+Cole Data Privacy + Security Insider

Reporting of Breaches Under 500 Due by March 1

HIPAA requires covered entities and business associates to report to the Office for Civil Rights (OCR) all breaches of unsecured protected health information when the incident involves fewer than 500 individuals no later than...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - September 27th - 30th, Austin, TX

Each Academy provides three-and-a-half days of classroom-style training covering the latest laws, regulations, and developments to help you effectively manage your organization’s compliance program. They are ideal for...more

Rivkin Radler LLP

OCR’s HIPAA Right Of Access Initiative Continues

Rivkin Radler LLP on

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has pursued its HIPAA Right of Access Initiative since 2019. OCR’s 19th settlement under the initiative, with The Diabetes, Endocrinology &...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - August 2nd - 5th, Seattle, WA

Each Academy provides three-and-a-half days of classroom-style training covering the latest laws, regulations, and developments to help you effectively manage your organization’s compliance program. They are ideal for...more

Robinson+Cole Data Privacy + Security Insider

Renown Health Pays $75,000 to Settle Right-of-Access Violation Under HIPAA

Renown Health, P.C. (Renown), a non-profit health system in Nevada, settled with the U.S. Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services in a matter resulting from an enforcement action for...more

Ruder Ware

Major Changes Proposed to HIPAA Privacy Rules

Ruder Ware on

Late last week, the United States Department of Health and Human Services (HHS), Office for Civil Rights issued a Notice of Proposed Rulemaking (NPR) to make significant revisions to the Health Insurance Portability and...more

Perkins Coie

DHHS Updates Resources for Mobile Health App Developers

Perkins Coie on

The COVID-19 pandemic and the resulting need for patient access to remote healthcare, as well as the development of contact-tracing apps, have spotlighted the importance of health-focused mobile applications (mHealth apps)....more

Robinson+Cole Data Privacy + Security Insider

OCR Settles Another Right-of-Access Initiative Case

The Office for Civil Rights (OCR) issued a press release on November 12, 2020, announcing that it had settled its eleventh enforcement action in its HIPAA Right-of-Access Initiative. The settlement with Dr. Rajendra Bhayani,...more

Robinson+Cole Data Privacy + Security Insider

Community Health Systems, Inc. Settles for $5 M in Multi-State Settlement

On October 8, 2020, New Jersey Attorney General Gurbir Grewal (AG) announced that his office has entered into a multi-state settlement agreement with Community Health Systems, Inc. (CHS) stemming from an investigation of a...more

Robinson+Cole Data Privacy + Security Insider

Athens Orthopedic Settles with OCR for $1.5M for Data Breach

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has announced that it has settled potential violations of HIPAA with Athens Orthopedic Clinic PA (Athens) for $1.5 million, following an...more

Foley Hoag LLP - Security, Privacy and the...

HIPAA Business Associate Pays $2.3 Million to Settle Breach Affecting Protected Health Information of Over 6 Million Individuals

With apologies to John Donne, ask not for whom the bells tolls, HIPAA business associates, it tolls for thee! While it has been the law for some time that business associates could be held directly liable for breaches,...more

McGuireWoods LLP

Hacked Patient Records Land Athens Orthopedic Clinic in Hot Water with OCR

McGuireWoods LLP on

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) reached a settlement for $1,500,000 and entered into a substantial corrective action plan with Athens Orthopedic Clinic (AOC) as a result of AOC’s...more

138 Results
 / 
View per page
Page: of 6

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide