News & Analysis as of October 18, 2024

Compliance › Privacy Laws › Healthcare

+ Follow

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. ... more +

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -

Privacy Briefs: October 2024

Health Care Compliance Association (HCCA) on 10/16/2024

23andMe agreed to pay $30 million and provide three years of security monitoring to settle a lawsuit accusing the genetics testing company of failing to protect the privacy of 6.9 million customers whose personal information...more

Navigating the Fallout: Essential Insights for Healthcare Companies in Light of the Change Healthcare Cyber Breach

Ankura on 10/7/2024

The cyber breach at Change Healthcare in 2024 stands out as one of the most significant cyber-attacks in recent memory. Its repercussions extend far beyond immediate industry disruptions, resonating deeply in regulatory...more

Artificial Intelligence in Health Care: Key Considerations for Oncology

Foley & Lardner LLP on 9/26/2024

Artificial intelligence (AI) has the power to revolutionize health care. In oncology, there are now opportunities to apply AI to support diagnostics, predictive analytics, and administrative functions. This hot topic was...more

HHS Abandons Appeal in Public Website Pixel Case, But CEs and BAs Should Expect Continued Scrutiny

Health Care Compliance Association (HCCA) on 9/24/2024

The HHS Office for Civil Rights (OCR) has abandoned its appeal of a federal judge’s ruling overturning OCR’s guidance prohibiting covered entities (CEs) and business associates (BAs) from using the web-tracking technologies...more

What does the HIPAA final rule regarding reproductive health information mean for your organization?

Health Care Compliance Association (HCCA) on 7/31/2024

On April 26, 2024, the U.S. Department of Health and Human Service Office for Civil Rights issued a final privacy rule to support reproductive health privacy. The rule does not allow the sharing of reproductive health...more

OCR Finalizes HIPAA Privacy Rule to Support Reproductive Health Care Privacy

ArentFox Schiff on 5/29/2024

On April 26, the US Department of Health and Human Services Office for Civil Rights (OCR) published a Final Rule that adds protections under the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule...more

“Let’s Talk Compliance”: Hot Topics in Compliance

Foley & Lardner LLP on 2/19/2024

Editor’s Note: PYA and Foley & Lardner hosted the 6th Annual “Let’s Talk Compliance” two-day Virtual Conference on January 18 and 19, 2024. Panelists included Foley & Lardner attorneys and PYA experts. The event was hosted by...more

Privacy Briefs: November 2023

Health Care Compliance Association (HCCA) on 11/10/2023

Report on Patient Privacy 23, no. 11 (November, 2023) The American Hospital Association (AHA) is urging federal lawmakers to intervene with the HHS Office for Civil Rights (OCR) so that hospitals and health systems can...more

11 Years After First Disclosure, L.A. Care Pays $1.3M, Says ‘Processing Errors’ Caused Breaches

Health Care Compliance Association (HCCA) on 10/6/2023

Report on Patient Privacy 23, no. 10 (October, 2023) By 2016, it should have been clear to HIPAA covered entities that a security risk analysis—and corresponding risk management plan—were compliance basics. Yet, a new...more

Artificial intelligence: Compliance considerations for provider organizations

Health Care Compliance Association (HCCA) on 9/11/2023

Artificial intelligence (AI) is nothing new to the healthcare industry, as many organizations and clinicians have utilized such tools in some capacity for many years. Imaging-related AI to support radiologists is not...more

Recent Amendments to Security Breach Notification Laws Further Complicate Breach Notification for Employers

Littler on 11/4/2015

It is not a matter of "if" but "when" an employer will be required to notify employees of a security breach. Forty-seven states require employers to notify employees when defined categories of personal information, including...more

Alphabet Soup and Data Security

Bilzin Sumberg on 10/19/2015

In the span of two days, mobile device users learned of two data breaches that could compromise their personal data. In one, Experian (a credit reporting agency) reported that it was hacked, potentially putting 15 million...more

Privacy, Security, Risk: What You Missed At IAPP Conference

Orrick, Herrington & Sutcliffe LLP on 10/15/2015

Earlier this month, privacy and security professionals from around the globe gathered for “Privacy. Security. Risk. 2015”—the second joint conference between the International Association of Privacy Professionals and the...more

OCR announces launch of Phase 2 of HIPAA audits

Robinson+Cole Data Privacy + Security Insider on 10/2/2015

Although the Office for Civil Rights (OCR) has indicated in the past that it would start its next round of HIPAA audits, apparently it means business now. In the wake of an Inspector General report that the OCR was merely...more

OCR Enters into $750,000 Settlement with Physician Practice for HIPAA Violations

Seyfarth Shaw LLP on 9/17/2015

On September 2, the Department of Health and Human Services Office of Civil Rights (OCR) announced a settlement with Cancer Care Group, P.C., a thirteen-physician oncology practice in Indiana related to violations of the...more

Avoiding the Costly “Robo No-No”

Buchalter on 9/17/2015

The Telephone Consumer Protection Act (“TCPA”) was enacted to protect consumers from intrusive robocalls, but Congress probably did not foresee that it would result in a windfall for plaintiff’s lawyers. Virtually every...more

Time for a HIPAA Security Check-Up!

Davis Wright Tremaine LLP on 9/9/2015

The 2015 HIPAA Security conference held by the National Institute of Standards and Technology (“NIST”) and the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) kicked off last week with OCR’s...more

HHS issues fact sheet on HIPAA rules and resources

Robinson+Cole Data Privacy + Security Insider on 8/7/2015

The Department of Health and Human Services (HHS) has released a fact sheet on the privacy, security, and breach notification rules of the Health Insurance Portability and Accountability Act (HIPAA). Designed to apply to...more

EEOC Issues Long-Awaited Proposed Rule on Employer Wellness Programs

Littler on 5/15/2015

On April 18, 2015, the Equal Employment Opportunity Commission (EEOC) issued a proposed rule on the treatment of employer wellness programs under the Americans with Disabilities Act (ADA). The proposed rule amends the ADA...more

Privacy And Data Security For Life Sciences And Health Care Companies

Troutman Pepper on 2/14/2014

Pepper Hamilton Health Care-Life Sciences Webinar - The explosion of mobile technology and Web applications linking patients with doctors, pharmacies and medical devices is undergoing scrutiny by the FDA, FTC, HHS and...more

U.S. Privacy and Data Protection: 2013 Year in Review and a Look Ahead to 2014

McDermott Will & Emery on 1/29/2014

In Boston, we celebrated Data Privacy Day (January 28) by presenting “U.S. Privacy and Data Protection: 2013 Year In Review and a Prediction of What’s to Come in 2014” for participants in an IAPP KnowledgeNet. Our panel of...more

21 Results

/

View per page

Page: of 1