News & Analysis as of

Office of Civil Rights Security Standards

Proskauer on Privacy

Department of Health and Human Services Issues Request for Information on Cybersecurity Standards

Proskauer on Privacy on

The Department of Health and Human Services (“HHS”) has issued a formal request for information from the public about how regulated entities are implementing industry recognized security practices. The request for information...more

Akerman LLP - Health Law Rx

Help Wanted: OCR Seeks Public Input on “Recognized Security Practices” and Sharing Settlements with Harmed Individuals Under the...

Akerman LLP - Health Law Rx on

Covered entities and business associates subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) have the chance to provide input on two amendments to the Health Information Technology for...more

Ballard Spahr LLP

HIPAA Guidance and Enforcement: A New Alignment?

Ballard Spahr LLP on

The Office of Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) announced that it has entered into a settlement with a business associate that provides electronic medical records services to health...more

Ballard Spahr LLP

OCR Announces $3 Million HIPAA Enforcement Settlement for Breach of 300,000 Patients’ PHI

Ballard Spahr LLP on

On May 6, 2019, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced an agreement  with Touchstone Medical Imaging, LLC (Touchstone)...more

Burns & Levinson LLP

HHS Releases Voluntary Cybersecurity Practices, Supplementing Existing Requirements

Burns & Levinson LLP on

At the close of 2018, the Department of Health and Human Services (HHS) published Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients. While not formally styled as guidance or interpretive...more

Robinson+Cole Data Privacy + Security Insider

OCR Issues Checklist for Responding to Cyber-Attack

Robinson+Cole Data Privacy + Security Insider on

The Office for Civil Rights (OCR) recently released guidance entitled “My Entity Just Experienced a Cyber-attack! What Do We Do Now?” The Checklist is a practical tool for health care entities and outlines several steps to...more

Ruder Ware

Lessons from OCR HIPAA Settlements - Mobile Device Security Standards

Ruder Ware on

In the first known case involving a wireless provider, a cardiology service provider agreed to pay a $2.5 million settlement based on the impermissible disclosure of unsecured electronic protected health information (ePHI)....more

Akerman LLP - Health Law Rx

Lack of Timely Action and Knowledge of Risk Results in $3.2 Million Civil Monetary Penalty for HIPAA Violations

Akerman LLP - Health Law Rx on

Children’s Medical Center of Dallas (Children’s) was hit with a $3.2 million civil penalty from the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) for failing to take steps to properly protect...more

8 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide