HHS’s Office for Civil Rights (OCR) released new guidance to clarify how HIPAA permits covered healthcare providers to disclose protected health information (PHI) without a patient’s...
The Office for Civil Rights (OCR) announced the resolution of five cases under the HIPAA Right of Access Initiative. OCR created the initiative in 2019 in order to support patients' right to timely...
Two New Jersey-based printing companies agreed to pay a fine of $130,000 for potentially committing HIPAA violations and New Jersey Consumer Fraud Act (CFA) violations through protected health...
HHS’ Office for Civil Rights (OCR) recently announced the appointment of a new director, Lisa J. Pino, who will take over the office’s oversight of civil rights enforcement, HIPAA...
The COVID-19 pandemic and vaccine rollout have brought HIPAA into the spotlight, but many Americans continue to misunderstand how HIPAA relates and does not relate to vaccination status. As a result,...
California Governor Gavin Newsom renewed most of Executive Order N-43-20, which provides certain HIPAA penalty exemptions surrounding the release of patient information for providers who deliver...
HHS has appointed Lisa J. Pino as director of the Office for Civil Rights (OCR). OCR oversees civil rights enforcements, HIPAA regulations, security, privacy, and breach notification rules.
Most...
Personally identifiable information (PII) and protected health information (PHI) may seem similar on the surface, but key distinctions set them apart. While PII is a catch-all term for any information...
The HHS Office for Civil Rights (OCR) settled its twentieth case under the HIPAA Right of Access Initiative, marked by an $80,000 civil monetary penalty paid by Nebraska-based Children’s Hospital...
Alabama Attorney General Steve Marshall released a statement warning healthcare providers to stop using the state’s COVID-19 immunization registry unlawfully to verify vaccination status for...
The HIPAA Privacy Rule does not protect one’s COVID-19 vaccination status, despite popular misconceptions. As HIPAA turns 25 this year, common misinterpretations of the law persist, a blog post...
Following a 2006 HIPAA violation investigation by Indianapolis news station WTHR, CVS and Rite Aid reached settlements with HHS’ Office for Civil Rights (OCR) and paid a combined $3.25 million in...
It’s been 25 years since HIPAA was signed into law, but new patient right of access policies have experts questioning the future of HIPAA and third-party data sharing, according to a recent op-ed...
The healthcare industry continues to battle a surge in ransomware and cyber-attacks, which have increased in recent years and spiked since the start of the COVID-19...
Wisconsin Governor Tony Evers signed a new cybersecurity regulation into law, creating additional measures for insurance companies to protect the personally identifiable...
The pandemic has brought about an increase in healthcare-related electronic information and an increased need for health information regulations, according to...
California is tightening up its health facility data breach regulations and recently issued an update to its administrative penalties and reporting requirements.
The newly...
A newly signed Connecticut cybersecurity law will now allow for the protection of patient data and other private health information.
An Act Concerning Data Privacy...