News & Analysis as of

Risk Mitigation Health Care Providers Office of Civil Rights

BakerHostetler

Let’s Get Physical - OCR Issues Reminder that HIPAA Security Isn’t Just Technical

BakerHostetler on

While most entities that are subject to the HIPAA Security Rule spend considerable time and effort ensuring that they have implemented appropriate administrate and technical safeguards to protect the health information that...more

Health Care Compliance Association (HCCA)

An inside view of HIPAA enforcement

While many healthcare providers are generally aware of their obligations under HIPAA, most do not have a clear sense of what happens if they fail to meet these obligations. At best, most probably are familiar with headlines...more

Health Care Compliance Association (HCCA)

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Society of Corporate Compliance and Ethics...

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

BakerHostetler

HHS Publishes ‘Voluntary’ Healthcare Cybersecurity Performance Goals in Record Time but Leaves Questions Unanswered

BakerHostetler on

As previously reported in this blog, on Dec. 6, 2023, the Department of Health and Human Services (HHS or the Department) released a “concept paper,” which laid out its vision of future action regarding healthcare...more

Health Care Compliance Association (HCCA)

‘An Unknown Individual Walked In’: Protecting Against Telehealth Risks Includes Non-IT Threats

The HHS Office for Civil Rights (OCR) and other government agencies aren’t just worried that providers understand—and mitigate—the privacy and security risks of telehealth. In fact, in 2022, the Government Accountability...more

Ankura

OCR Issues Guidance to Patients and Providers on Telehealth Privacy and Security

Ankura on

On October 18, 2023, the Department of Health and Human Services (DHHS) through the Office for Civil Rights (OCR) issued an update1 containing two resource documents to help educate patients regarding privacy and security...more

Health Care Compliance Association (HCCA)

[Event] Regional Healthcare Compliance Conference - July 22nd, Seattle, WA

Looking for compliance training and networking in your area? HCCA’s Regional Healthcare Compliance Conferences offer practitioners convenient, local compliance training, including updates on the latest news in regulatory...more

Health Care Compliance Association (HCCA)

[Event] 26th Annual Compliance Institute - March 28th - 31st, Phoenix, AZ

The primary educational and networking event for healthcare compliance professionals - As our flagship healthcare compliance conference, HCCA’s Compliance Institute (CI) has been providing educational resources and...more

Health Care Compliance Association (HCCA)

[Virtual Event] Hawaii Regional Healthcare Compliance Conference - October 7th, 7:55 am - 4:00 pm HST

Our Virtual Regional Healthcare Compliance Conferences provide updates on the latest news in regulatory requirement, compliance enforcement, and strategies to develop effective compliance programs. Watch, listen, and ask...more

Health Care Compliance Association (HCCA)

[Virtual Event] 2021 Regional Healthcare Compliance Conference - Seattle - July 23rd, 8:25 am - 4:30 pm PDT

Our Virtual Regional Healthcare Compliance Conferences provide updates on the latest news in regulatory requirement, compliance enforcement, and strategies to develop effective compliance programs. Watch, listen, and ask...more

Health Care Compliance Association (HCCA)

[Virtual Event] 2021 25th Annual Compliance Institute - April 19th - 22nd, 9:30 am - 4:35 pm CDT

The Compliance Institute is celebrating 25 years! Join us for the Compliance Institute's 25th anniversary, April 19-22, 2021. This year, HCCA is excited to celebrate over two decades of compliance excellence with our...more

Morgan Lewis - Health Law Scan

Health Datapalooza - February 2020

Partner Reece Hirsch recently attended and spoke at the 2020 Health Datapalooza held in Washington, DC. This year, Health Datapalooza was co-located with the National Health Policy Conference, providing attendees with an...more

Health Care Compliance Association (HCCA)

Report on Patient Privacy Volume 19, Number 11. Privacy Briefs: November 2019

Report on Patient Privacy Volume 19, Number 11. (November 2019) ? The biggest threat to protected health information comes from carelessness within your organization, according to a brief from the Clearwater...more

Burr & Forman

Post-Breach: Preparing for a HIPAA Investigation

Burr & Forman on

The Office of Civil Rights (“OCR”) is the federal agency that oversees compliance with the Health Insurance Portability and Accountability Act of 1996, and its implementing regulations (“HIPAA”). In that regard, among other...more

Shumaker, Loop & Kendrick, LLP

Client Alert: The Lack of an Adequate HIPAA Security Risk Assessment is a Common and Costly Mistake by Healthcare Providers: What...

Health care providers and others who must comply with the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) have specific requirements under the Security Rule to HIPAA when it comes to their mainte-nance...more

Baker Donelson

Changes to the Security Risk Assessment (SRA) Tool Require Attention

Baker Donelson on

The HHS Office of the National Coordinator for Health Information Technology (ONC) and the HHS Office for Civil Rights (OCR) released an updated Security Risk Assessment (SRA) Tool this week. All covered entities and business...more

Ruder Ware

Lessons from OCR HIPAA Settlements - Mobile Device Security Standards

Ruder Ware on

In the first known case involving a wireless provider, a cardiology service provider agreed to pay a $2.5 million settlement based on the impermissible disclosure of unsecured electronic protected health information (ePHI)....more

Davis Wright Tremaine LLP

Can Ransomware Trap Your Health Information? OCR Highlights the Risk of Cyber Extortion in its Cyber-Awareness Initiative

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has been highlighting the threat posed by “ransomware”—when an organization is locked out of its own systems and files by cyber criminals who...more

19 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide