After a brief hiatus due to COVID-19, the NAIC’s Privacy Working Group returned to work on May 5 discussing comments received on the working group’s markup of the NAIC Insurance Information and Privacy Protection Model Act...more
As we’ve previously reported, COVID-19 has caused a surge in telehealth and has temporarily reduced the HIPAA Security Rule requirements placed on telehealth service providers. ...more
Thus far, telehealth breaches have been exceedingly rare, but as telehealth is increasingly used, telehealth data breaches and similar incidents may become more commonplace. Here are 10 steps for responding to a telehealth...more
5/4/2020
/ Coronavirus/COVID-19 ,
Cyber Attacks ,
Data Breach ,
Hackers ,
Health Care Providers ,
HIPAA Breach ,
Incident Response Plans ,
Patient Access ,
Risk Assessment ,
State Data Breach Notification Statutes ,
Telehealth ,
Telemedicine
Last week, the American Medical Association (AMA) and the American Hospital Association (AHA), recognizing the increased cybersecurity threats facing health care providers, issued joint guidance for physicians working from...more
4/23/2020
/ Coronavirus/COVID-19 ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
Hackers ,
Health Care Providers ,
Information Governance ,
PHI ,
Phishing Scams ,
Popular ,
Risk Management ,
Vulnerability Assessments
The level of attention that the SEC’s Office of Compliance Inspections and Examinations has been giving to cybersecurity issues can hardly be overstated. ...more
Recognizing that the NAIC’s model consumer data privacy laws have not been revised since 2017, the NAIC Privacy Protections Working Group (Privacy WG) is dusting off the NAIC Insurance Information and Privacy Protection Model...more
The Federal Reserve has unveiled its $600 billion Main Street lending effort for businesses with up to 10,000 employees and up to $2.5 billion in 2019 annual revenue....more
COVID-19 spurred an overnight surge in demand for work-from-home vendors. These include companies offering audio and videoconferencing services, cloud services, e-commerce platforms, and virtual desktop infrastructure, to...more
4/5/2020
/ California Consumer Privacy Act (CCPA) ,
Contract Peformance ,
Corporate Counsel ,
Cybersecurity ,
Data Management ,
Data Security ,
Force Majeure Clause ,
General Data Protection Regulation (GDPR) ,
Privacy Policy ,
Telecommuting ,
Vendor Contacts
Until recently, telehealth made up a very small percentage of medical claims (less than 1% according to FAIR Health’s July 2019 white paper). But with the temporary loosening of telehealth restrictions, everyday providers are...more
3/23/2020
For many people and organizations, COVID-19 caused a rapid transition to remote learning and working; for hackers and other bad actors, it has created new opportunities. Whether by virtue of a remote and distracted workforce,...more
It starts inconspicuously enough with an email. You’re busy, so without thinking, you quickly open it and view the attachment. You may have just compromised the security of your entire company and the privacy of every...more
2/5/2020
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Employee Training ,
Hackers ,
Personally Identifiable Information ,
Ransomware ,
Risk Management
Florida lawmakers have proposed data privacy legislation that, if adopted, would impose significant new obligations on companies offering a website or online service to Florida residents, including allowing consumers to “opt...more
1/15/2020
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Corporate Counsel ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Governance ,
Legislative Agendas ,
Opt-Outs ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Privacy Laws ,
Privacy Policy ,
Proposed Legislation ,
Proposed Regulation ,
Regulatory Agenda ,
Risk Management ,
Rulemaking Process ,
State and Local Government ,
Websites