News & Analysis as of

Office of Civil Rights Reporting Requirements

Kohrman Jackson & Krantz LLP

Ohio CAMPUS Act 2024: New Policies for Addressing Ethnic and Racial Harassment in Higher Education

This summer, the Ohio House of Representatives passed the Campus Accountability and Modernization to Protect University Students (CAMPUS) Act. This law, if enacted, would require institutions of higher education throughout...more

Spilman Thomas & Battle, PLLC

Decoded - Technology Law Insights, V 5, Issue 5, June 2024

We are pleased to announce that several of the firm’s practice groups and attorneys were recognized in the 2024 edition of Chambers USA, a directory of leading law firms and attorneys. Chambers and Partners annually...more

Alston & Bird

HHS Final Rule Brings Sweeping, Complex Changes for Substance Use Records

Alston & Bird on

A new HHS Final Rule overhauls the federal Part 2 regulations on the confidentiality of substance use disorder (SUD) records. Our Heath Care Health Care and Privacy, Cyber & Data Strategy Groups unpack how the changes will...more

Davis Wright Tremaine LLP

LEAP, Don't Run, to Make this YEAR's Deadline: HIPAA Small Breach Notifications Due February 29

February 29, 2024, is the date by which HIPAA-covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of all "small" breaches of unsecured protected health information that...more

Cadwalader, Wickersham & Taft LLP

CFTC Extends OCR Final Rule Relief

On September 22, 2023, the Commodity Futures Trading Commission’s (the “CFTC” or the “Commission") Division of Market Oversight extended its no-action position regarding certain large trader reporting (“LTR”) obligations for...more

Robinson+Cole Data Privacy + Security Insider

Annual Breach Notification Deadline to OCR Looming

HIPAA requires that covered entities notify the Office for Civil Rights (OCR) of any breaches of unsecured protected health information that affects less than 500 individuals in a calendar year within 60 days following the...more

Mintz - Health Care Viewpoints

Protecting Health Information Post Roe Part 1: Steps for Women

In the wake of the Supreme Court’s ruling in Dobbs vs. Jackson Women’s Health Organization, much has been written about how existing privacy laws, such as the Health Insurance Portability and Accountability Act (“HIPAA”), are...more

Robinson+Cole Data Privacy + Security Insider

Reporting of Breaches Under 500 Due by March 1

HIPAA requires covered entities and business associates to report to the Office for Civil Rights (OCR) all breaches of unsecured protected health information when the incident involves fewer than 500 individuals no later than...more

Pullman & Comley - School Law

OCR Makes Clear That COVID-19 Does Not Alter School Districts’ Obligations Under the New Title IX Regulations

The new Title IX regulations addressing sexual harassment in elementary and secondary schools went into effect August 14, 2020.  These regulations prescribe the exact way that schools must now address sexual harassment of...more

Holland & Knight LLP

COVID-19 Guidance for Institutions of Higher Education

Holland & Knight LLP on

The fluid and fast-changing impact of the new coronavirus (COVID-19) has left institutions of higher education (IHEs) scrambling to address unexpected legal issues. This guidance addresses some of their more frequently asked...more

Robinson+Cole Data Privacy + Security Insider

Yearly Data Breach Reporting Due to OCR by February 29

Every year, we remind our readers that the HIPAA data breach notification regulations require covered entities to notify the Office for Civil Rights (OCR) of any reportable data breaches that involved fewer than 500...more

Franczek P.C.

Jail Time for Responsible Employees Under Title IX? In Texas, Maybe

Franczek P.C. on

We all know how important it is for responsible employees in educational institutions to report up the chain when they learn of sexual misconduct against a student. But the stakes for noncompliance just grew in Texas, where...more

Health Care Compliance Association (HCCA)

'Misinterpretation' of Breach Rule, Lack of Internal BAA Cost Hospital Group $2.1M

Report on Patient Privacy 19, no. 12 (December 2019) - Sentara Hospitals, a nonprofit group of 12 medical centers in Virginia and North Carolina, will implement a fairly minimal two-year corrective action plan (CAP) and...more

Foley & Lardner LLP

HIPAA: Failure to Report Breach Costs Hospital $2.175 Million

Foley & Lardner LLP on

One health system recently learned the cost of relying too heavily on the HIPAA Breach Notification Rule’s “low probability of compromise” standard when it failed to notify all affected individuals and report the HIPAA breach...more

Bradley Arant Boult Cummings LLP

OCR Breach Reporting: 2018 “Small Breach” Report Due Friday, March 1st - Healthcare Alert

Don’t forget that the required end-of-the-year reporting of any small breaches of unsecured protected health information (PHI) that were discovered in 2018 is coming up. Under the Health Insurance Portability and...more

Ruder Ware

When Does a HIPAA Breach Exist?

Ruder Ware on

Conducting HIPAA Breach Risk Assessments - The HIPAA rules relating to assessment of potential patient confidentiality breaches were changed in 2013. Specifically, on January 17, 2013, the Office of Civil Rights released...more

Husch Blackwell LLP

REMINDER: February Deadline for HIPAA Breach Reporting

Husch Blackwell LLP on

With the New Year underway, the deadline is quickly approaching for HIPAA covered entities to file their annual breach reports with the U.S. Department of Health & Human Services Office for Civil Rights (“OCR”)....more

Patterson Belknap Webb & Tyler LLP

Department of Education Rescinds Obama-Era Title IX Guidance in Advance of New Rulemaking

This morning, the Office for Civil Rights of the Department of Education issued a “Dear Colleague” letter rescinding the Obama administration’s school sexual assault guidance. The Department also issued a new set of...more

Burr & Forman

TortSource: Ransomware: A Reportable Breach?

Burr & Forman on

In the past several years, a huge increase has occurred in the number of electronic attacks in the United States using ransomware, a form of malware that targets and encrypts critical data and systems for the purpose of...more

Orrick - Finance 20/20

No-Action Letter Issued Regarding the OCR Final Rule

Orrick - Finance 20/20 on

On April 8, the U.S. Commodity Futures Trading Commission’s (“CFTC”) Division of Market Oversight issued a no-action letter regarding the ownership and control final rule (the “OCR Final Rule”). The OCR Final Rule requires...more

Katten Muchin Rosenman LLP

Bridging the Week - April 2016 #2

CFTC Again Extends Deadlines for New OCR Compliance; Puts Pressure on FCM Clients Who Will Not Provide Adequate Information Regarding Trading Control - Late last week, staff of the Division of Market Oversight of the...more

Davis Wright Tremaine LLP

February 2016: The Month of Groundhog Day, Super Bowl 50, Valentine’s Day … and HIPAA Breach Notifications

Feb. 29, 2016, a/k/a Leap Day, is the date by which HIPAA covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of “small” breaches of unsecured protected health...more

Robinson+Cole Data Privacy + Security Insider

Deadline for reporting 2015 data breaches to OCR quickly approaching

Pursuant to HIPAA/HITECH, covered entities are required to report breaches of unsecured protected health information that occurred in 2015 and affected less than 500 individuals to the Office for Civil Rights no later than 60...more

Orrick, Herrington & Sutcliffe LLP

Orrick's Financial Industry Week in Review

SEC Proposes to Amend Rules Governing Its Administrative Proceedings - On September 24, the U.S. Securities and Exchange Commission (the "SEC") proposed to amend rules governing its administrative proceedings. Key...more

Katten Muchin Rosenman LLP

Bridging the Week - October 2015

ESMA Publishes Final Technical Standards for MiFID II - The European Securities and Markets Authority issued the equivalent of final rules (known as “technical standards”) to implement three cornerstones of the European...more

32 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide