The Office for Civil Rights (OCR) recently announced the resolution of eleven investigations in its Health Insurance Portability and Accountability Act (HIPAA) Right of Access Initiative, bringing the total number of enforcement actions to... Read More
The Office for Civil Rights (OCR) announced a settlement with Oklahoma State University – Center for Health Services (OSU-CHS) related to a hacking incident that compromised the protected health information (PHI) of 279,865 individuals. The... Read More
In 2021, the New Jersey Office of Attorney General (“NJAG”) entered into three settlement agreements with various healthcare entities over alleged violations of the Health Insurance Portability and Accountability Act (“HIPAA”). Of note, in... Read More
Recently, a media organization obtained the medical records of 281,000 patients from an individual who hacked a telemedicine platform. The platform specifically catered to patients seeking Ivermectin and Hydroxychloroquine prescriptions. The hack... Read More
Last week, the Federal Trade Commission (“FTC”) issued a policy statement that served to remind developers of apps, connected device manufacturers, and related entities of the applicability of the FTC’s Health Breach Notification Rule... Read More
This month, the Department of Health and Human Services, Office for Civil Rights (“OCR”), the agency tasked with enforcing the Health Insurance Portability and Accountability Act (“HIPAA”), issued its Summer 2021 Cybersecurity Newsletter.... Read More
The Whistleblower Exception protects a covered entity from being considered to have committed a breach if the whistleblower is a member of the covered entity’s workforce and is the victim of a crime. In a recent article in Relias Media called,... Read More
The Department of Health and Human Services Office for Civil Rights (“OCR”) continues to bring enforcement actions against entities it alleges have infringed on a patient’s right to timely access their records in violation of the Health... Read More
In October 2020, Frier Levitt described how the Cybersecurity and Infrastructure Security Agency (“CISA”) and the FBI announced an “increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.” Since that time,... Read More
On January 21, 2021, the U.S. Department of Health and Human Services (“HHS”) published proposed rules that would significantly modify existing regulations concerning the Health Insurance Portability and Accountability Act (“HIPAA”). The... Read More
