Innovation in Compliance - Improving Third - Party Risk Management with Paul Valente
The “Catch-22” of Preference Law
Gerry Blass on Healthcare Vendor Risk Management
Cyberside Chats: Would you bury your driver's license? (with Whitney McCollum)
Matt Silverman on Export Compliance
Thobekile Cynthia Khumalo on Third Party Due Diligence
Sitting with the C-Suite: Blending eDiscovery Vendors and Law Firms
Ledgers and Law: Real-World Planning for Cyber Attacks
Education Data Privacy and Security Laws: Best Practices for School Districts
In House Counsel: How To Measure the Effectiveness of Your Staffing Strategy
Sitting with the C-Suite: Identifying Opportunities to Leverage Human Capital
Lessons for Health, Beauty & Wellness Companies [Part 2]: What Options Exist for a Vendor During Bankruptcy
Lessons for Health, Beauty & Wellness Companies: What to do When Your Buyer is in Financial Distress
Sitting with the C-Suite: How Should In-House Counsel Evaluate eDiscovery Service?
Strategies for Restaurant Owners to Survive in the New Normal
Compliance Perspectives: Supply Chain Compliance Challenges
The CCPA for the Land Title Industry: Service Providers and Sale of Data Under the CCPA
Compliance Perspectives: Supply Chains, Human Trafficking and Modern Slavery
Episode 120: Interview of NAVEX Global Third-Party Risk Officials: Chris Bailey and Stephen Gooding
PODCAST: Williams Mullen GovCon Perspectives - Recent Updates to the SWaM Certification Process in Virginia
On April 24, the Federal Trade Commission announced that it had finalized changes to its Health Breach Notification Rule - to address emerging technologies. Specifically, the Rule was broadened to (1) apply to entities not...more
As artificial intelligence becomes increasingly integrated into business operations, companies must carefully evaluate vendor contracts involving AI technologies...more
Individual Coverage Health Reimbursement Arrangements (ICHRAs) have continued to grow in popularity since their inception in 2019 (see our article here summarizing the 2019 rule establishing ICHRAs). While initially it seemed...more
On April 26, the Federal Trade Commission (FTC) approved its Final Rule revising the Health Breach Notification Rule (HBNR) (“Final Rule”) by a 3-2 vote. The HBNR requires vendors of personal health records (PHR) and related...more
HCCA’s four-day Healthcare Compliance Essentials Workshop provides comprehensive education on the core elements of a compliance program in a convenient virtual format. The curriculum is ideal for those new to or with little...more
For healthcare providers and health systems covered by the privacy and security regulations under the Health Insurance Portability and Accountability Act (HIPAA), a breach of unsecured protected health information (PHI)...more
HCCA’s four-day Healthcare Compliance Essentials Workshop provides comprehensive education on the core elements of a compliance program. The curriculum is ideal for those new to or with little experience in compliance, as...more
In April, 2020, in an effort to facilitate a national pivot to telehealth in light of the COVID-19 Public Health Emergency (PHE), the U.S. Department of Health & Human Services Office for Civil Rights (OCR) announced a policy...more
Synopsis: While certain industries have been able to navigate the explosion of privacy laws in recent times through express statutory exemptions or exceptions (often due to other regulatory regimes being in place, such as the...more
Earlier this week, our Fox partner Odia Kagan spoke on HIMSS TV about the risks associated with what may be a “blind spot” in your data privacy compliance efforts: the use of data trackers (such as cookies, tracking pixels,...more
The COVID-19 pandemic accelerated the evolution of the role of technology in medical care, giving rise to novel issues in the absence of formal governmental guidance. Responding to certain challenges brought on by the...more
Last week, the Federal Trade Commission (“FTC”) released two guidance documents to aid in compliance with its Health Breach Notification Rule (“the Rule”), which requires “vendors of personal health records” or “PHR related...more
Can’t attend the conference in-person? The virtual Managed Care Compliance Conference, February 8–9, allows you to hear from industry professionals just like you—all from the comfort of your home or office. Geared towards...more
HCCA’s Healthcare Compliance Essentials Workshop is a four-day virtual event for those who are new to the compliance profession. The content is designed to help you develop and improve your compliance skills. Our instructors...more
In this episode, Rebecca Schaefer interviews Gina Bertolini and Desiree Moore about the recent Federal Trade Commission (FTC) policy statement regarding the FTC Health Breach Notification Rule and its applicability to vendors...more
Attend our annual event for those who manage compliance at health plan providers. Explore topics and issues that are pertinent to industry professionals like you. Learn the latest practices, share strategies, and connect with...more
Learning Objectives: - Review the definition of a business associate under HIPAA - Understand common relationships that create gray areas in making determinations on whether business associate relationships exist -...more
Organizations are becoming increasingly reliant on external parties to manage parts of their business. The centralized knowledge, expertise, and economies of scale that third parties provide enables organizations to focus...more
The SolarWinds hack highlights the critical need for organizations of all sizes to include cyber supply chain risk management as part of their information security program. It is also a reminder that privacy and security...more
As we noted in late January 2020, the spread of infectious disease raises particular concerns for healthcare workers who want to do their jobs and care for their patients, while also protect themselves and their families....more
As COVID-19 cases continue to surge, many employers have implemented a variety of safeguards to limit the spread of COVID-19 in their workplaces. One safeguard being utilized is a COVID-19 testing program. As a preliminary...more
Assessing the privacy and cybersecurity practices of third-party service providers is critical not only for employee personal information, but also for confidential and personal information pertaining to an organization’s...more
As the COVID-19 pandemic continues, the healthcare industry is understandably fraught with unease and uncertainty. This, coupled with the ubiquity of social media, creates challenges for healthcare providers facing public...more
The fluid and fast-changing impact of the new coronavirus (COVID-19) has left institutions of higher education (IHEs) scrambling to address unexpected legal issues. This guidance addresses some of their more frequently asked...more