Cignet Proves That It Is Bad To Violate The HIPPA Privacy Rule, But Worse To...
Cignet Health (Cignet), which operates four health centers in Maryland, is a little lighter in the wallet after the U.S. Department of Health and Human Services’ (HHS) Office of Civil Rights (OCR)...
View ArticleHIPAA Privacy and Security Audit Pilot Program Takes Flight
On November 8, 2011, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) announced details of its HIPAA Privacy and Security Audit Program pursuant to the American Recovery...
View ArticleState Attorney General Action Under HITECH
On January 19, 2012, Minnesota Attorney General Lori Swanson exercised her authority under the HITECH Act by filing a lawsuit against a business associate for the failure to protect protected health...
View ArticleNew York Court Finds Clinic Not Liable for Employee’s Disclosure of PHI
A federal district court dismissed an action against an employer alleging vicarious liability for an employee’s dissemination of a patient’s protected health information (PHI) related to treatment for...
View ArticleGoverning the Code of Life
What if the story of your life was written at birth- a “future diary” available for someone to read? The decoding of the human genome over a decade ago held the promise of defying our genetic destiny,...
View ArticleHIPAA Privacy In The Aftermath Of Sandy: Be Prepared For The Next Emergency
As health care providers, patients, family members, friends, and disaster relief agencies such as the American Red Cross continue to grapple with the aftermath of Hurricane Sandy it is important to be...
View ArticleOCR Issues Guidance On HIPAA Privacy Rule’s De-Identification Standard
On November 26, 2012, the Department of Health and Human Services Office for Civil Rights (“OCR”) published a thirty-two page document titled “Guidance Regarding Methods for De-identification of...
View ArticleKeep An Eye On Those Shiny, New Mobile Devices!
As physicians, nurses, therapists and health care providers continue to utilize new smart phones, tablets, and laptops in caring for patients, the Department of Health and Human Services (“HHS”) has...
View ArticleHHS Announces New Patient Privacy and Security Protections
On January 17, 2013, U.S. Department of Health and Human Services Secretary Kathleen Sebelius announced the final omnibus rule that among other things (1) increases patient privacy protections; (2)...
View ArticleMassachusetts AGO Enters Into Another Settlement For Data Security Violations
For the fourth time since the Massachusetts data security regulations took effect in March 2010, the Massachusetts Attorney General’s Office (“AGO”) has settled allegations that Massachusetts-based...
View ArticleHHS Empowers Consumers to Know (and Enforce) their Rights Under HIPAA
Ryan BlaneyThe U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) published on its website a series of factsheets designed to educate consumers unfamiliar with their...
View ArticleRise of the Genome
David MunkittrickWe pack tons of personal and sensitive information in our DNA. While the human genome has been mapped for a decade, legal issues of genetic privacy are just beginning to rise....
View ArticleA $1.2 Million Photocopier Mistake: Health Plan Settles with HHS in HIPAA...
Ryan BlaneyWe have heard the well-publicized stories of stolen laptops and resulting violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and we generally recognize...
View ArticleRegulators Offer Guidance on Privacy and Security for Health App Developers
Laura E. Goldsmith This month, the Federal Trade Commission (FTC) issued guidance on privacy and security best practices for health-related mobile apps, such as fitness apps connected with wearables,...
View ArticleFTC: LabMD Tests Positive for “Unfair” Security Practices
Harris Hoffberg LabMD’s lack of data security measures resulted in the FTC Commission overturning an Administrative Law Judge (“ALJ”) decision that previously dismissed charges against the company in...
View ArticleHIPAA Privacy In The Aftermath Of Sandy: Be Prepared For The Next Emergency
As health care providers, patients, family members, friends, and disaster relief agencies such as the American Red Cross continue to grapple with the aftermath of Hurricane Sandy it is important to be...
View ArticleOCR Issues Guidance On HIPAA Privacy Rule’s De-Identification Standard
On November 26, 2012, the Department of Health and Human Services Office for Civil Rights (“OCR”) published a thirty-two page document titled “Guidance Regarding Methods for De-identification of...
View ArticleRegulators Offer Guidance on Privacy and Security for Health App Developers
This month, the Federal Trade Commission (FTC) issued guidance on privacy and security best practices for health-related mobile apps, such as fitness apps connected with wearables, diet and weight loss...
View ArticleFTC: LabMD Tests Positive for “Unfair” Security Practices
LabMD’s lack of data security measures resulted in the FTC Commission overturning an Administrative Law Judge (“ALJ”) decision that previously dismissed charges against the company in November. LabMD...
View ArticleGoing Beyond HIPAA – Washington Health Privacy Law Enacted: Broad Reach,...
The Health Information Portability and Accountability Act (“HIPAA”) has long been described as the floor for health care privacy laws and that states and regulators are free to enact more restrictive...
View Article
