Last week, the Federal Trade Commission (“FTC”) and the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) issued a joint letter (“Joint Letter”) (https://www.ftc.gov/system/files/ftc_gov/pdf/FTC-OCR-Letter-Third-Party-Trackers-07-20-2023.pdf)
Continue Reading FTC and OCR Issue Joint Website Tracking Warning LetterHIPAA Audits
Feeling Lucky? You Could Be One of the Nine Covered Entities Selected for HIPAA Compliance Review this Month
If you are a covered entity health plan or clearinghouse, you may be among the nine (un)lucky entities randomly chosen this month for review into compliance with HIPAA’s Administrative Simplification…
Continue Reading Feeling Lucky? You Could Be One of the Nine Covered Entities Selected for HIPAA Compliance Review this Month
HIPAA Security and “Zero Day” Exploits: How to Stay Ahead of the Hack
HHS Office for Civil Rights (OCR)’s April 3, 2019 cybersecurity newsletter highlights one of the more challenging cybersecurity vulnerabilities faced by covered entities and business associates. OCR reminds covered entities…
Continue Reading HIPAA Security and “Zero Day” Exploits: How to Stay Ahead of the Hack
“I Want My PHI”, Part 2 – OCR Audits Will Focus on Individual Access Rights
We blogged on this back in early May, but compliance with individuals’ rights to access their PHI under HIPAA is even more critical now that OCR has announced that its…
Continue Reading “I Want My PHI”, Part 2 – OCR Audits Will Focus on Individual Access Rights
Health Care Providers: Have You Considered HIPAA Compliance for Your Practice’s Group Health Plans?
Contributed by Elizabeth R. Larkin and Jessica Forbes Olson
Health care providers know about and have worked with HIPAA privacy and security rules for well over a decade. They have…
Continue Reading Health Care Providers: Have You Considered HIPAA Compliance for Your Practice’s Group Health Plans?