News & Analysis as of

Audits Cybersecurity

Clark Hill PLC

The Value of an Effective HIPAA Compliance Program Amid OCR HIPAA Audits

Clark Hill PLC on

In 2024, the U.S. Department of Health and Human Services Office of Civil Rights (“OCR”) Director Melanie Fontes Rainer announced that OCR will resume auditing Health Information Portability and Accountability Act (“HIPAA”)...more

Rumberger | Kirk

Why Your Organization Needs to Craft a Comprehensive GenAI Policy Now

Rumberger | Kirk on

The rapid advancement of generative artificial intelligence technologies has revolutionized various industries by automating complex tasks, creating content, and enhancing decision-making processes. However, it also poses...more

Greenbaum, Rowe, Smith & Davis LLP

New Senate Bill Seeks to Amend HIPAA with Mandatory Minimum Healthcare Cybersecurity Standards

On September 26, 2024, the Health Infrastructure Security and Accountability Act was introduced in the U.S. Senate. The bill would amend the Health Insurance Portability and Accountability Act (HIPAA) and direct the U.S....more

Foodman CPAs & Advisors

IRS Use of AI Can Close Tax GAP

On 10/12/23, the IRS announced new tax gap projections for tax years 2020 and 2021 showing the projected gross tax gap increased to $688 billion in tax year 2021, a rise of more than $192 billion from the prior estimates for...more

McAfee & Taft

DOL confirms cybersecurity guidance applies to health and welfare plans

McAfee & Taft on

On Friday, September 6, 2024, the U.S. Department of Labor confirmed that its cybersecurity guidance applies to all employee benefit plans, including health and welfare plans. In 2021, the DOL issued guidance providing best...more

Baker Donelson

Guardians of the Goldmine: Building an Effective Confidentiality Program

Baker Donelson on

On August 14, Judge Corrigan for the Middle District of Florida, in Properties of the Villages vs. FTC, found that the FTC did not have the authority to enter its planned Noncompete Rule, and entered an order granting an...more

Dechert LLP

Dechert Cyber Bits - Issue 59

Dechert LLP on

U.S. Court Axes Most of SEC's SolarWinds Data Breach Suit - The U.S. District Court for the Southern District of New York recently dismissed much of the U.S. Securities and Exchange Commission’s (“SEC”) suit against...more

Paul Hastings LLP

CPPA Declines to Advance New Draft CCPA Regulations

Paul Hastings LLP on

The California Privacy Protection Agency (CPPA) Board met last week to discuss the latest updates on California Consumer Privacy Act (CCPA) draft regulations for cybersecurity audits, risk assessments, automated...more

Davis Wright Tremaine LLP

District Court Dismisses Majority of SEC Complaint Against SolarWinds and Its CISO

The U.S. District Court for the Southern District of New York has dealt a significant blow to the cybersecurity enforcement efforts of the U.S. Securities and Exchange Commission (SEC or Commission). In its July 18, 2024,...more

Holland & Knight LLP

Court in SolarWinds Case Blows Down SEC's Cyber Enforcement Authority

Holland & Knight LLP on

The U.S. District Court for the Southern District of New York on July 18, 2024, dismissed most of the SEC's landmark cyber enforcement litigation against SolarWinds Corp. (SolarWinds or the Company) and the Company's Chief...more

Dunlap Bennett & Ludwig PLLC

Can You Prove It? Evidence Of Compliance Is Critical For Government Contractors

The Department of Justice has been clamping down on false certifications in the System for Award Management (“SAM”), in government contracts, and on invoice submissions. New laws are being created, new frameworks are being...more

BakerHostetler

FTC Continues Focus on Disclosure of Health Information to Third-Party Technologies

BakerHostetler on

A recently announced settlement with online alcohol addiction treatment service Monument Inc. demonstrates the Federal Trade Commission’s (FTC) continued focus on the use and disclosure of health data. The proposed settlement...more

Ankura

Operational Implications of the New Bulk Sensitive Data Executive Order

Ankura on

On February 28, 2024, President Biden signed Executive Order 14117 (the EO), on “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern.” The United...more

Jackson Lewis P.C.

Nuanced Privacy Laws Means Healthcare Organizations Should Prioritize Protecting Personal Information

Jackson Lewis P.C. on

The healthcare industry is among the most highly regulated industries when it comes to privacy protections. In addition to the federal Health Insurance Portability and Accountability Act (HIPAA), healthcare providers also...more

American Conference Institute (ACI)

[Event] 15th Advanced Forum on DCAA & DCMA Cost, Pricing, Compliance & Audits - June 25th - 26th, Arlington, VA

For 15 years, ACI’s Forum on DCAA & DCMA Cost, Pricing, Compliance & Audits provides government contractors with the opportunity to deeply discuss the most critical compliance issues, hear from senior government officials,...more

Mitratech Holdings, Inc

Caution! Credential Stuffing on the Rise

If you have a tendency to reuse the same password across multiple accounts, you could be leaving yourself (and your organization) exposed to risk. Credential stuffing, the stealthy technique fueling a recent explosion of...more

Epstein Becker & Green

2024 Update: Regulators Use “Carrots and Sticks” to Incentivize Healthcare Sector Cybersecurity Compliance

Epstein Becker & Green on

Healthcare organizations continue to be prime targets of cyberattacks. It is well-established that cyberattacks can lead to financial loss, reputational damage, and, in some cases, risks to patient care and safety. The recent...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - July 15th - 18th, Charlotte, NC

Ideal for professionals with some compliance knowledge and experience, HCCA’s Healthcare Privacy Compliance Academy offers practitioners a deeper understanding of effective compliance management in a healthcare setting. The...more

NAVEX

Addressing Cybersecurity Expectations in Healthcare

NAVEX on

2024 is shaping up to be a very active year for regulatory and enforcement developments in the healthcare industry – developments that concern not just hospitals and nursing facilities, but many non-healthcare companies as...more

Dechert LLP

Exploring DORA’s ICT Risk Requirements: Key Issues for Asset Managers

Dechert LLP on

DORA became law in December 2022 but provides for a grace period until 17 January 2025 for organisations to put in place the necessary measures to comply. The new rules will require engagement from both an operational and...more

Mitratech Holdings, Inc

5 Reasons to Invest in Enterprise Risk Management Software

From financial uncertainties to cybersecurity threats, regulatory changes, and everything in between, just how imperative is Enterprise Risk Management (ERM) technology in today’s business environment? According to a...more

Guidepost Solutions LLC

Cyber Bullets for Small Law Firms

In our rapidly evolving digital landscape, all organizations are facing an onslaught of cybersecurity threats. According to recent research, victims of cyber attacks paid out a record $1.1 billion last year and have already...more

Baker Donelson

HIPAA Updates: The Obligations Continue to Unfold

Baker Donelson on

There has been a notable emphasis on proactive enforcement of the privacy and security of protected health information in recent weeks as evidenced by multiple developments regarding compliance with the Health Insurance...more

Health Care Compliance Association (HCCA)

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Society of Corporate Compliance and Ethics...

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

210 Results
 / 
View per page
Page: of 9

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide