Artificial Intelligence (AI) is widely viewed as a valuable tool for improving health and healthcare. It is being used by major technology companies such as Google, small start-up companies, and
Continue Reading 4 Key Take-Aways For Harnessing AI In Compliance with HIPAA
Elizabeth G. Litten
Flo Health App Fallout: HIPAA-like Breach Notification Rule Not Enforced by FTC
Flo Health, Inc., which marketed an app used by more than 100 million women interested in tracking their personal menstruation and fertility information, seems to be getting off easily as…
Continue Reading Flo Health App Fallout: HIPAA-like Breach Notification Rule Not Enforced by FTC
New Year Likely to Bring New Incentive for Cybersecurity Investment
H.R. 7898, sent to the President for signature on December 24, 2020 may be the HIPAA holiday gift covered entities and business associates have been waiting for. The bill…
Continue Reading New Year Likely to Bring New Incentive for Cybersecurity Investment
Re-Setting the Clock for Responding to Individual Access Requests Under the Information Blocking Rule
Covered entities beware: a timing pitfall lurks within the recently adopted rules prohibiting information blocking. We have posted about OCR’s “Right to Access Initiative” and numerous enforcement actions taken to…
Continue Reading Re-Setting the Clock for Responding to Individual Access Requests Under the Information Blocking Rule
Which Privacy Protections Apply? HIPAA, FERPA and COVID-19
A recent conversation with a colleague in California prompted me to write this. He said that as part of its back-to-school plan, his children’s elementary school district “highly encouraged” that…
Continue Reading Which Privacy Protections Apply? HIPAA, FERPA and COVID-19
New OCR Resource Adds Guidance on HIPAA and Direct-to-Consumer Health Apps
A tricky issue for mobile health app developers since the Office for Civil Rights (OCR) released its first “Health App Use Scenarios & HIPAA” guidance back in 2016 has been…
Continue Reading New OCR Resource Adds Guidance on HIPAA and Direct-to-Consumer Health Apps
Updated OCR Guidance on Contacting Recovered COVID-19 Patients
The Office for Civil Rights within the Department of Health and Human Services (OCR) provided guidance in June that reassured covered entity health care providers and that it is generally…
Continue Reading Updated OCR Guidance on Contacting Recovered COVID-19 Patients
“I Have an App for That”: ONC’s Information Blocking Rule and HIPAA Access Rights
A patient asks her doctor to send her test results to an app the patient has downloaded on her phone. The doctor worries that the app is not secure and…
Continue Reading “I Have an App for That”: ONC’s Information Blocking Rule and HIPAA Access Rights
Employer Collection of COVID-19 Data and Employee Privacy
The following post is adapted from an article written by Fox Rothschild attorneys Wayne Pinksone and Lucy Li, available here.
OSHA recently published guidance for “nonessential businesses” that are…
Continue Reading Employer Collection of COVID-19 Data and Employee Privacy
Don’t Get Sprayed: CISA Alert Reminds Health Care Entities to Use Strong Passwords
A joint Alert from the U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) and the U.K.’s National Cyber Security Centre (NCSC) warns of new cyber attacks targeting…
Continue Reading Don’t Get Sprayed: CISA Alert Reminds Health Care Entities to Use Strong Passwords