Last week, the Federal Trade Commission (“FTC”) and the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) issued a joint letter (“Joint Letter”) (https://www.ftc.gov/system/files/ftc_gov/pdf/FTC-OCR-Letter-Third-Party-Trackers-07-20-2023.pdf)
Continue Reading FTC and OCR Issue Joint Website Tracking Warning LetterSurvey: Nearly All Providers Say Interoperability Capabilities Are Vital in Post-Acute Care
Brightree by ResMed (“Brightree”), a cloud-based management software platform for healthcare providers, has conducted its biannual interoperability survey, and issued its corresponding biannual Interoperability and Engagement Research Report. Most
Continue Reading Survey: Nearly All Providers Say Interoperability Capabilities Are Vital in Post-Acute Care
Is Your Website HIPAA-Compliant?
If you are a HIPAA-covered entity or business associate, you likely know that patient PHI may only be created, received, maintained, and transmitted as permitted by the HIPAA Security Rule
Continue Reading Is Your Website HIPAA-Compliant?Beware of Third-Party Trackers Like Meta Pixel. Ignoring Them Could Be Costly.
If you are dealing with sensitive information of any kind (yes, this includes precise geolocation, ethnicity, sexual orientation, etc), but especially health information (and yes, reproductive health information too), do
Continue Reading Beware of Third-Party Trackers Like Meta Pixel. Ignoring Them Could Be Costly.HHS Issues Guidance in Light of Dobbs Decision
The U.S. Department of Health and Human Services (HHS) issued guidance on June 29 discussing privacy protections under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) in the
Continue Reading HHS Issues Guidance in Light of Dobbs DecisionNew Telehealth Guidance Gives Thumbs-Up to Audio-Only Services
On June 13th, U.S. Department of Health & Human Services (“HHS”) issued guidance advising that covered health care providers and health plans (covered entities) can provide audio-only telehealth services
Continue Reading New Telehealth Guidance Gives Thumbs-Up to Audio-Only ServicesHIPAA or Not, Health Apps Must Provide Breach Notification
The Federal Trade Commission seems to be getting serious about unauthorized disclosures of data collected by health apps. In a Policy Statement issued on September 15, 2021, the FTC says
Continue Reading HIPAA or Not, Health Apps Must Provide Breach Notification
4 Key Take-Aways For Harnessing AI In Compliance with HIPAA
Artificial Intelligence (AI) is widely viewed as a valuable tool for improving health and healthcare. It is being used by major technology companies such as Google, small start-up companies, and
Continue Reading 4 Key Take-Aways For Harnessing AI In Compliance with HIPAA
The OCR Remains Increasingly Active under the HIPAA Right of Access Initiative
The Department of Health and Human Services (“HHS”) Office of Civil Rights (“OCR”) recently settled four more investigations under the HIPAA Right of Access Initiative, which totals 11 settlements thus
Continue Reading The OCR Remains Increasingly Active under the HIPAA Right of Access Initiative
New OCR Resource Adds Guidance on HIPAA and Direct-to-Consumer Health Apps
A tricky issue for mobile health app developers since the Office for Civil Rights (OCR) released its first “Health App Use Scenarios & HIPAA” guidance back in 2016 has been
Continue Reading New OCR Resource Adds Guidance on HIPAA and Direct-to-Consumer Health Apps