News & Analysis as of

Policies and Procedures Office of Civil Rights Department of Health and Human Services (HHS)

Saul Ewing LLP

OCR Imposes $200,000 Civil Money Penalty Against HIPAA-Covered Entity

Saul Ewing LLP on

On March 6, 2025, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced a civil money penalty (“CMP”) of $200,000 against Oregon Health & Science University (“OHSU”) for failing to...more

King & Spalding

OCR Proposes Updates to Strengthen the HIPAA Security Rule

King & Spalding on

On December 27, 2024, the Office for Civil Rights (OCR) at HHS issued a Notice of Proposed Rulemaking (the Proposed Rule) intended to update the Security Rule under the Health Insurance Portability and Accountability Act...more

Jackson Lewis P.C.

OCR Proposed Tighter Security Rules for HIPAA Regulated Entities, including Business Associates and Group Health Plans

Jackson Lewis P.C. on

As the healthcare sector continues to be a top target for cyber criminals, the Office for Civil Rights (OCR) issued proposed updates to the HIPAA Security Rule (scheduled to be published in the Federal Register January 6). It...more

Lippes Mathias LLP

Hospital Administrators – Is Your Hospital Cyber-Secure?

Lippes Mathias LLP on

On October 2, 2024, New York adopted new regulations requiring general hospitals to implement heightened cybersecurity safeguards. General hospitals, as defined in Article 28 of the NY Public Health Law, generally must begin...more

Holland & Hart LLP

New ACA 1557 Non-Discrimination Rules: Checklist For Healthcare Providers

Holland & Hart LLP on

On May 6, 2024, the Department of Health and Human Services (HHS) published its final rule revamping the non-discrimination regulations issued under § 1557 of the Affordable Care Act.  The revised rules apply to all...more

Proskauer - Employee Benefits & Executive...

Final HIPAA Privacy Rule Increases Protection of Reproductive Health Care Data

The Office for Civil Rights (“OCR”) at the Department of Health and Human Services (“HHS”) recently issued final regulations (“Reproductive Health Care Rule”) under the Health Insurance Portability and Accountability Act of...more

Akin Gump Strauss Hauer & Feld LLP

2024 Guide to DOJ and HHS OIG Guidance on Effective Compliance Programs

The Department of Health & Human Services’ Office of Inspector General (HHS OIG) and U.S. Department of Justice (DOJ) have published important guidance and recommendations for pharmaceutical companies to develop and implement...more

McDermott Will & Emery

Ensuring Nondiscrimination in Patient Visitations

McDermott Will & Emery on

Reflecting on lessons learned and complaints received during the COVID-19 pandemic, the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) released detailed frequently asked questions (FAQs)...more

Polsinelli

HHS Finalized Part 2 Revisions: What Has Changed?

Polsinelli on

On February 8, 2024, the U.S. Department of Health and Human Services, through its Office for Civil Rights (OCR) and the Substance Abuse and Mental Health Services Administration (SAMHSA), released final rule (Final Rule)...more

King & Spalding

OCR Provides Guidance Regarding Patient Visitation Rights

King & Spalding on

On January 25, 2024, HHS Office for Civil Rights (OCR) issued guidance and responses to frequently asked questions regarding nondiscrimination regulations related to patient visitation. Hospitals, long term care facilities,...more

Seyfarth Shaw LLP

Cyber Strategy: HHS Weighs in on Cybersecurity in the Healthcare Industry

Seyfarth Shaw LLP on

Seyfarth Synopsis: The health care sector faces escalating cybersecurity risks given its size, technological dependence and the sensitive nature of data used therein. According to the U.S. Department of Health and Human...more

Health Care Compliance Association (HCCA)

OCR Ends Year With Settlements That Tread Old Ground, Says New Rules Are Coming—Someday

If the penultimate enforcement settlement of 2023 issued by the HHS Office for Civil Rights (OCR) sounds familiar, that’s with good reason. And the last one of the year should ring some bells, too....more

Verrill

HIPAA Privacy Rule Changes: Just in time for the New Year?

Verrill on

In 2021, the Department of Health and Human Services (HHS) proposed changes to the Privacy Rule under the Health Insurance Portability and Accessibility Act of 1996 (HIPAA) that would significantly alter the current...more

Ankura

DHHS OCR and FTC Issue Warning to Hospital Systems and Telehealth Providers Regarding Privacy and Security Risks

Ankura on

On July 20, 2023, the Department of Health and Human Services (DHHS) through the Office of Civil Rights (OCR) and the Federal Trade Commission (FTC) issued a joint letter to hospitals and telehealth providers alerting them to...more

WilmerHale

HHS OCR Settles with iHealth Solutions Over Alleged HIPAA Violations

WilmerHale on

On June 28, the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement (resolution agreement and corrective action plan) with iHealth Solutions (also known as Advantum Health)...more

Tarter Krinsky & Drogin LLP

HIPAA Compliance Lessons for Covered Entities

The recent settlement between the U.S. Department of Health and Human Services Office for Civil Rights (OCR) and a community hospital is a reminder of the importance of HIPAA compliance for all healthcare organizations. The...more

King & Spalding

Hospital Settles HIPAA Investigation Over Allegations of Medical Record Access by Security Guards

King & Spalding on

On June 15, 2023, OCR announced a settlement with Yakima Valley Memorial Hospital (Yakima) after completing a HIPAA investigation regarding allegations that hospital security guards accessed medical records of 419 patients....more

Kerr Russell

Cybersecurity for Medical Practices: Addressing the HIPAA in the Room

Kerr Russell on

Cybersecurity attacks, such as malware, phishing emails, and password attacks, are a growing threat to patients and medical practices. Cyber attacks can significantly disrupt patient care, including by exposing confidential...more

Holland & Hart LLP

OCR Cracks Down on Electronic Protected Health Information Breaches under HIPAA

Holland & Hart LLP on

The U.S. Department of Health and Human Services Office for Civil Rights (“OCR”) entered into a Resolution Agreement (“Agreement”) with Banner Health on behalf of Banner Health Affiliated Covered Entities (“Banner”) to remedy...more

Woods Rogers

HIPAA Security Rule: What are “Recognized Security Practices” and why are they important?

Woods Rogers on

A strong cybersecurity program can help defend against cyber attacks and protect sensitive patient data. Thanks to a 2021 amendment of the HITECH Act, when a breach occurs, it can also reduce enforcement penalties. The...more

Ankura

HIPAA Right of Access From a Dental Practice Perspective

Ankura on

The Right of Access Initiative by the Office for Civil Rights (OCR) at the Department of Health and Human Services (HHS) began in 2019. On September 20, 2022, the OCR published its latest press release on the matter...more

Baker Donelson

Office For Civil Rights Seeks Input on Implementation of HITECH Amendments

Baker Donelson on

On April 6, 2022, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) released a Request for Information (RFI) seeking public comment on "recognized security practices" and on sharing civil...more

Rivkin Radler LLP

Yet Another HIPAA Right Of Access Settlement

Rivkin Radler LLP on

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced the 14th settlement in its ongoing HIPAA Right of Access Initiative. Banner Health, a Phoenix-based health system that operates 30...more

K&L Gates LLP

K&L Gates Triage: HIPAA: Do Hospitals Need a Business Associate Agreement with their Health System Parent Corporation?

K&L Gates LLP on

In this week’s episode, Rebecca Schaefer and Hannah Maroney discuss a string of recent HIPAA enforcement actions which demonstrate that the HHS Office of Civil Rights (OCR), the agency tasked with enforcing HIPAA, is...more

Robinson+Cole Data Privacy + Security Insider

U.S. Health & Human Services – Office of Civil Rights Issued Guidance Regarding HIPAA Privacy and Novel Coronavirus

The Office of Civil Rights (OCR) last month provided guidance and a reminder to HIPAA covered entities and their business associates regarding the sharing of patient health information (PHI) under the Health Insurance...more

36 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide