Cybersecurity
March 27, 2019 | Eric D. Fader | Cybersecurity | Electronic Health Records | FDA | Legislation and Public Policy | Medical Devices and Wearables | Telehealth
Medtronic PLC self-disclosed last week to the U.S. Food and Drug Administration (FDA) that an unspecified problem in the wireless technology of 19 models of the company’s defibrillators makes them vulnerable to being hacked. The company said it is not aware of any cyberattacks, privacy breaches, or patient harm related to the 750,000 vulnerable devices.
Read MoreFebruary 28, 2019 | Rivkin Rounds Staff | Cybersecurity | Electronic Health Records | HIPAA | Legislation and Public Policy
An article in the March issue of Healthcare Risk Management discussed a Request for Information (RFI) released in December by the U.S. Department of Health and Human Services’ Office of Civil Rights (OCR). The RFI, which seeks public input on how the HIPAA rules may be modified to promote coordinated, value-based healthcare, was previously discussed
Read MoreDecember 11, 2018 | Cybersecurity | Electronic Health Records | HIPAA | Hospitals
Advanced Care Hospitalists, PL (ACH), a Florida physician group, has learned that failing to enter into a proper business associate agreement (BAA) with a vendor can be a very costly mistake. As a result of that failure, ACH has paid a penalty of $500,000 to the U.S. Department of Health and Human Services’ Office for
Read MoreDecember 5, 2018 | Rivkin Rounds Staff | Cybersecurity | Electronic Health Records | HIPAA | Hospitals
A December 4 article in Bloomberg Law’s Health Law & Business, “Florida Physicians Group Exposed 9,000 Patients’ Data to Web,” discussed a $500,000 HIPAA settlement entered into by Advanced Care Hospitalists (ACH), a Florida physician group, with the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR). Rivkin Radler’s Eric Fader was quoted
Read MoreOctober 23, 2018 | Cybersecurity | Electronic Health Records | HIPAA
As cybersecurity threats increase, the need for healthcare providers to conduct periodic security risk assessments as required by the HIPAA Security Rule has become more critical. To assist providers in this task, the U.S. Department of Health and Human Services’ (HHS) Office of the National Coordinator for Health Information Technology and Office for Civil Rights
Read MoreOctober 23, 2018 | Rivkin Rounds Staff | Cybersecurity | Electronic Health Records | HIPAA | Litigation | Private Insurers
An October 16, 2018, article in Bloomberg Law’s Health Law & Business, “Anthem Data-Breach Settlement Sets Tone for Privacy Enforcement”, discussed Anthem, Inc.’s recent $16 million data breach settlement with the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR). The 2015 breach compromised the personal information of about 79 million people. Rivkin
Read More