Last week, the Federal Trade Commission (“FTC”) and the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) issued a joint letter (“Joint Letter”) (https://www.ftc.gov/system/files/ftc_gov/pdf/FTC-OCR-Letter-Third-Party-Trackers-07-20-2023.pdf)
Continue Reading FTC and OCR Issue Joint Website Tracking Warning Letter
Is Your Website HIPAA-Compliant?
If you are a HIPAA-covered entity or business associate, you likely know that patient PHI may only be created, received, maintained, and transmitted as permitted by the HIPAA Security Rule
Continue Reading Is Your Website HIPAA-Compliant?HHS Issues Guidance in Light of Dobbs Decision
The U.S. Department of Health and Human Services (HHS) issued guidance on June 29 discussing privacy protections under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) in the
Continue Reading HHS Issues Guidance in Light of Dobbs DecisionPlanned Parenthood Los Angeles Data Breach Coincides with Spotlight on Roe v. Wade
According to this article, 2021 has been a “particularly dire year” for health care data breaches. So, it may not seem shocking that a hacker gained access to the
Continue Reading Planned Parenthood Los Angeles Data Breach Coincides with Spotlight on Roe v. Wade
“Are You Vaccinated?” Asking, Answering, and Clarifying HIPAA
HIPAA has been around for a quarter century, but confusion continues as to its scope and applicability. The COVID pandemic, surge in Delta variant cases, and increasing number of employer
Continue Reading “Are You Vaccinated?” Asking, Answering, and Clarifying HIPAA
Mental Health Apps Sharing Health Data Without Disclosure or Consent
A study shows that “92 percent of 36 mental health apps shared data with at least one third party — mostly services that help with marketing, advertising, or data analytics.”
Continue Reading Mental Health Apps Sharing Health Data Without Disclosure or Consent
When Data is Like Toothpaste
In 1973, President Richard Nixon’s Chief of Staff H.R. Haldeman warned White House Counsel John Dean against talking to prosecutors investigating the growing Watergate scandal, telling him “Once the
Continue Reading When Data is Like Toothpaste
Washington State Passes Law Restricting Commercial Collection, Storage and Use of Biometric Data
On July 23, 2017, Washington State will become the third state (after Illinois and Texas) to statutorily restrict the collection, storage and use of biometric data for commercial purposes. The
Continue Reading Washington State Passes Law Restricting Commercial Collection, Storage and Use of Biometric Data
Nine Tips for Avoiding HIPAA Breaches When Responding to Widespread Healthcare Emergencies
The aftermath of the Orlando nightclub tragedy has led to much discussion about ways that healthcare providers can and should deal with compliance with health information privacy requirements in the
Continue Reading Nine Tips for Avoiding HIPAA Breaches When Responding to Widespread Healthcare Emergencies
Tips on Avoiding HIPAA Breaches for Patient-Employee Records
Our partner Elizabeth Litten and I were featured again by our good friend Marla Durben Hirsch in her article in the April 2016 issue of Medical Practice Compliance Alert entitled
Continue Reading Tips on Avoiding HIPAA Breaches for Patient-Employee Records