Healthcare providers running on thin margins or just seeking new (and in the case of tax-exempt providers, permissible) revenue sources may jump at the chance when third party vendors offer to help them monetize their patient...more
7/22/2024
/ Business Associates ,
Data Privacy ,
Data Security ,
Data Selling ,
De-Identification ,
De-Identified Protected Health Information ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Monetization ,
Penalties ,
PHI ,
Privacy Laws ,
Statutory Violations
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has, as part of its mandate, the responsibility to enforce the Health Insurance Portability and Accountability Act (HIPAA) Security Rule....more
5/14/2024
/ Audits ,
Business Associates ,
Compliance ,
Covered Entities ,
Data Privacy ,
Data Security ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Security Rule ,
HITECH Act ,
OCR ,
PHI ,
Popular ,
Ransomware ,
Risk Assessment ,
Web Tracking
In this episode of our “Florida Capital Conversations” podcast series, healthcare attorneys Mia McKown, Eddie Williams and Shannon Hartsfield discuss how privacy violations can put a healthcare practitioner's license at risk....more
An amendment to the Health Information Technology for Economic and Clinical Health (HITECH) Act was signed into law on Jan. 5, 2021, directing U.S. Health and Human Services (HHS) to consider "recognized security practices"...more
8/31/2021
/ Compliance ,
Covered Entities ,
Cybersecurity ,
Data Protection ,
Data Security ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Industry Cybersecurity Practices (HICP) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HITECH Act ,
Incident Response Plans ,
New Legislation ,
NIST ,
PHI
• The U.S. Department of Health and Human Services on Dec. 28, 2018, announced the release of the "Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients" that provides a "Call to Action" to make...more
1/14/2019
/ Best Practices ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Loss Prevention ,
Data Privacy ,
Data Protection ,
Data Security ,
Data Theft ,
Department of Health and Human Services (HHS) ,
Department of Homeland Security (DHS) ,
Food and Drug Administration (FDA) ,
Hackers ,
Health Care Providers ,
Health Clinics ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HITECH Act ,
Hospitals ,
Information Technology ,
Medical Devices ,
NIST ,
Patient Safety ,
Personally Identifiable Information ,
PHI ,
Phishing Scams ,
Popular ,
Ransomware ,
Risk Mitigation ,
Standard of Care
The Department of Health and Human Services' Office for Civil Rights (OCR) has issued a Request for Information, which is scheduled for publication in the Federal Register on Dec. 14, 2018. OCR is asking the public to provide...more
12/12/2018
/ Comment Period ,
Data Privacy ,
Data Security ,
Federal Register ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Sharing ,
OCR ,
PHI ,
Privacy Policy ,
Public Comment ,
Regulatory Agenda ,
Regulatory Burden ,
Request For Information ,
Value-Based Care
The Department of Health and Human Services' Office of the Inspector General (HHS OIG) announced a new cybersecurity website on Oct. 9, 2018.
The OIG stated that it has formed a Cybersecurity Team made up of "auditors,...more
CMS issued a memo to state survey agency directors on December 28, 2017, to clarify CMS’s position on texting patient information. The memo, which indicates that it is effective “immediately,” states that CMS prohibits...more
Health Insurance Portability and Accountability Act of 1996, as amended, (HIPAA) audits could be right around the corner for self-funded employee health plans. The Department of Health and Human Services' Office for Civil...more