A tricky issue for mobile health app developers since the Office for Civil Rights (OCR) released its first “Health App Use Scenarios & HIPAA” guidance back in 2016 has been
Continue Reading New OCR Resource Adds Guidance on HIPAA and Direct-to-Consumer Health Apps
Updated OCR Guidance on Contacting Recovered COVID-19 Patients
The Office for Civil Rights within the Department of Health and Human Services (OCR) provided guidance in June that reassured covered entity health care providers and that it is generally
Continue Reading Updated OCR Guidance on Contacting Recovered COVID-19 Patients
OCR Webinar on HIPAA and COVID-19: Key Points for Covered Entities and Business Associates
Fox Rothschild LLP partner Beth Larkin listened to the HHS Office for Civil Rights 4/24/20 webinar (which should be posted on its website at some point) regarding HIPAA and COVID-19
Continue Reading OCR Webinar on HIPAA and COVID-19: Key Points for Covered Entities and Business Associates
OCR Warning: Phone Scammer Posing as Investigator to Obtain PHI
The Department of Health and Human Services’ Office for Civil Rights (OCR) has issued a warning that it has received reports that someone has been impersonating an OCR inspector in
Continue Reading OCR Warning: Phone Scammer Posing as Investigator to Obtain PHI
Breach Notice Deadline Alert
If you are a covered entity who experienced a breach of unsecured protected health information affecting fewer than 500 individuals , you must notify the Office of Human Rights of
Continue Reading Breach Notice Deadline Alert
2019 HIPAA BREACHES: THE BOX SCORES
It’s that time again for year-in-review articles. On December 16, 2019, Modern Healthcare has published an infographic that compares HIPAA breaches which occurred in 2019 to aggregate breach statistics from
Continue Reading 2019 HIPAA BREACHES: THE BOX SCORES
Clear Message from OCR: Don’t Ignore (or Overcharge for) Patient Requests for Records
Last week, the Office for Civil Rights (OCR) announced its second enforcement action and settlement with a provider for failing to comply with HIPAA’s patient access requirements. Korunda Medical, LLC,
Continue Reading Clear Message from OCR: Don’t Ignore (or Overcharge for) Patient Requests for Records
How the Grinch Steals Health Care Data: OCR Warnings and Tips in Time for the Holidays
More and more often, health care data is stolen or made inaccessible by targeted ransomware attacks. The Office for Civil Rights (OCR) published a newsletter this week that provides warnings
Continue Reading How the Grinch Steals Health Care Data: OCR Warnings and Tips in Time for the Holidays
Back to School and Back to BAAs: OCR Guidance Provides Reason to Review BAA Provisions
Last May, around the time many schools let out for the summer, the Office for Civil Rights (“OCR”) published guidance entitled “Direct Liability of Business Associates” (the “Guidance”),
Continue Reading Back to School and Back to BAAs: OCR Guidance Provides Reason to Review BAA Provisions
Too Much (Protected Health) Information Exposed + Too Little Response = $3M and Corrective Action Plan for Medical Imaging Company
“TMI” usually means “too much information”, but it was used aptly by the Office for Civil Rights (OCR) as an acronym for a covered entity that exposed protected health information
Continue Reading Too Much (Protected Health) Information Exposed + Too Little Response = $3M and Corrective Action Plan for Medical Imaging Company