Rebecca Williams

Rebecca Williams

Davis Wright Tremaine LLP

Contact
View Bio
RSS

Latest Posts › Cybersecurity

Share:

OCR Updates Guidance on HIPAA and Online Tracking, But New Examples Lead to New Questions

Changes to guidance are unlikely to mitigate widespread concerns - On March 18, 2024, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) revised its controversial guidance on how HIPAA applies...more

3/20/2024  /  Cybersecurity , Data Privacy , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , Mobile Apps , OCR , PHI , Technology , Tracking Systems , Web Tracking

The Clock Is Ticking: HIPAA Small Breach Notifications Due March 1

HIPAA-covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of "small" breaches of unsecured protected health information that were discovered during calendar-year 2022 no...more

2/24/2023  /  Corporate Counsel , Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , OCR , PHI

Department of Labor Announces Cybersecurity Guidance for ERISA Retirement Plans

The Employee Benefits Security Administration (EBSA) of the U.S. Department of Labor (DOL) recently announced its first cybersecurity guidance for retirement plans subject to the Employee Retirement Income Security Act of...more

4/28/2021  /  Benefit Plan Sponsors , Cybersecurity , Data Breach , Data Privacy , Department of Labor (DOL) , EBSA , Employee Benefits , Employee Retirement Income Security Act (ERISA) , Popular , Retirement Plan , Retirement Plan Providers , Risk Management

New Sprint Regulations Encourage Investment in EHR and Cybersecurity Technology

On December 2, 2020, under the Trump Administration's "Regulatory Sprint to Coordinated Care" initiative, the Centers for Medicare & Medicaid Services (CMS) and the Office of Inspector General (OIG) published final...more

12/4/2020  /  Anti-Kickback Statute , Centers for Medicare & Medicaid Services (CMS) , Cybersecurity , Data Collection , EHR , Medical Records , OIG , Popular , Safe Harbors , Stark Law , Trump Administration

HIPAA Small Breach Notification Due March 1: “In Like a Lion, Out Like a Lamb” if You Submit Timely

March 1, 2017 is the date by which HIPAA covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of “small” breaches of unsecured protected health information that were...more

2/10/2017  /  Breach Notification Rule , Covered Entities , Cybersecurity , Data Breach , Data Security , Department of Health and Human Services (HHS) , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , OCR

No Phishing: OCR Warns of Phishing Attempts Disguised as Official HIPAA Audit Program Emails

What’s worse than receiving an email indicating that you have been selected for an audit by your favorite government regulator? Clicking on a link in the email and discovering that it is a phishing attack that has just...more

12/14/2016  /  Business Associates , Covered Entities , Cybersecurity , Data Protection , Department of Health and Human Services (HHS) , Email , Health Insurance Portability and Accountability Act (HIPAA) , OCR , Phishing Scams , Popular

Just Around the Corner – HIPAA Audits for Business Associates

Financial organizations that are business associates can expect a wave of HIPAA desk audits to evaluate the HIPAA compliance efforts of business associates. These audits have a limited focus and are conducted by the U.S....more

10/19/2016  /  Business Associates , Covered Entities , Cybersecurity , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Audits , OCR

Employers: What the Anthem Breach Means to You

On Feb. 4, 2015, Anthem announced a data breach involving the personal information of more than 80 million individuals resulting from what it characterized as a sophisticated, targeted cyber-attack. Group health plans may be...more

2/10/2015  /  Anthem Insurance , Best Practices , Breach Notification Rule , Corporate Counsel , Cyber Attacks , Cybersecurity , Health Insurance Portability and Accountability Act (HIPAA) , Personally Identifiable Information
8 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide