The settlement in the Accretive Health, Inc. PHI breach case provides a good example of how the blurring of the covered entity and business associate roles can backfire on parties that fail to sufficiently analyze and define such roles, not only at the outset of a relationship but throughout its duration and evolution.
Continue Reading Business Associate Breach Leads to $2.5M Settlement by Accretive: But Who is the Covered Entity or Business Associate Here, and Do We Care?
attorney general
Why Can’t I Sue Under HIPAA for a Breach of my Protected Health Information? What Can I Do?
Many people who have been in the unfortunate situation where they believe that their protected health information (PHI) has been compromised inappropriately, are often surprised and deeply disappointed to learn that the HIPAA law does not provide a “private right of action.”…
Continue Reading Why Can’t I Sue Under HIPAA for a Breach of my Protected Health Information? What Can I Do?
Government HIPAA Enforcement Tools – Will These “Red Light Cameras” Deter Marchers From Joining the Breach Parade?
To avoid becoming marchers in the Breach Parade, covered entities and business associates should be aware of tools being used by the federal Office of Civil Rights and State Attorneys General to deter and catch HIPAA privacy and security breaches that may be similar to the red light cameras designed to deter and catch traffic violations.
Continue Reading Government HIPAA Enforcement Tools – Will These “Red Light Cameras” Deter Marchers From Joining the Breach Parade?
The Hazards of Data Mining: Minnesota AG Sues Collection Agency for Breach, Improper Use of PHI
A Wall Street-based medical collection service has been sued by the Minnesota Attorney General after losing a laptop containing sensitive information about 23,500 patients treated by two hospitals which contracted…
The Parade of PHI Security Breaches: Escalating Enforcement Activity by Attorneys General – Most Recently in Indiana
Significantly, the lawsuit by the Indiana Attorney General is not being brought under HIPAA/HITECH but under Indiana state law.
Continue Reading The Parade of PHI Security Breaches: Escalating Enforcement Activity by Attorneys General – Most Recently in Indiana
The Parade of PHI Security Breaches – Providers and Insurers Beware of Attorney General Richard Blumenthal and Other Attorneys General
As reported previously on this blog, the requirements under the HIPAA/HITECH statutes and regulations for public disclosure of security breaches of Protected Health Information (“PHI”) have continuously been bringing to …