Electronic Health Records


Updated Guidance Addresses the Privacy of Student Records
January 13, 2020 | Margarita Christoforou | Electronic Health Records | HIPAA | Legislation and Public Policy
In an effort to provide further clarity to school administrators, healthcare professionals and families, the U.S. Department of Education and the Office for Civil Rights at the U.S. Department of Health and Human Services recently released updated joint guidance addressing the application of the Family Educational Rights and Privacy Act (FERPA) and the HIPAA Privacy …
Read More
Alabama Health System Reeling After Ransomware Attack
January 6, 2020 | Margarita Christoforou | Cybersecurity | Electronic Health Records | HIPAA | Hospitals | Litigation
Alabama’s DCH Health System is facing a federal lawsuit filed by some former patients who allege it was negligent in discovering and responding to a ransomware attack on its computer system. In addition to negligence, the complaint accuses DCH of invasion of privacy, breach of contract and breach of fiduciary duty, among other things. The …
Read More
HIPAA Access Violation Costs Provider $85,000
December 19, 2019 | Eric D. Fader | Electronic Health Records | HIPAA | Hospitals | Litigation
A Florida primary care and pain management practice that calls itself Korunda Medical Institute has paid the federal government $85,000 to settle a violation of HIPAA’s right of access provisions. The U.S. Department of Health and Human Services (HHS) announced the settlement on December 12. A Korunda patient filed a complaint with HHS’s Office for …
Read More
Fader Gives Perspective on HIPAA Enforcement for Healthcare Risk Management
December 4, 2019 | Rivkin Rounds Staff | Cybersecurity | Electronic Health Records | HIPAA | Hospitals | Legislation and Public Policy | Litigation
Eric Fader contributed to Healthcare Risk Management’s HIPAA Regulatory Alert, which appeared in the publication’s December 2019 issue. The Alert outlines the best practices that will help avoid common HIPAA violations. Eric discusses the events that might trigger a regulatory action and the kinds of violations that may affect the severity of the penalties and fines. …
Read More
Another HIPAA Penalty: $1.6 Million for Breach of ePHI
November 12, 2019 | Ada Kozicz | Cybersecurity | Electronic Health Records | HIPAA | Litigation
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced on November 7 that it imposed a $1.6 million monetary penalty against the Texas Health and Human Services Commission for violations of the HIPAA Privacy and Security Rules. The Commission operates several health and public need facilities and also administers many …
Read More
HHS Releases Updated HIPAA Risk Assessment Tool
November 8, 2019 | Eric D. Fader | Cybersecurity | Electronic Health Records | HIPAA
The U.S. Department of Health and Human Services (HHS) recently released a new version of its security risk assessment (SRA) tool that helps smaller healthcare providers conduct and document risk assessments, as required by the HIPAA Security Rule. The update incorporates new features to make the tool more user-friendly. The SRA tool, available on HHS’s …
Read More
NY Hospital Pays $3 Million HIPAA Settlement
November 6, 2019 | Eric D. Fader | Electronic Health Records | HIPAA | Hospitals | Litigation
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced on November 5 that the University of Rochester Medical Center (URMC) agreed to pay $3 million to settle violations of the HIPAA Privacy and Security Rules. URMC is one of the largest health systems in New York State, with more than …
Read More
Florida Hospital Fined $2.15 Million for Theft and Sale of Records
October 24, 2019 | Ada Kozicz | Electronic Health Records | HIPAA | Hospitals | Litigation
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced on October 23 that Jackson Health System (JHS) in Miami has received a civil money penalty of $2,154,000 for violations of HIPAA’s Security and Breach Notification Rules. OCR Director Roger Severino said, “OCR’s investigation revealed a HIPAA compliance program that had …
Read More
Kaiser to Present at PLI Life Sciences Program
September 17, 2019 | Rivkin Rounds Staff | Cybersecurity | Electronic Health Records | FDA | False Claims Act | Fraud and Abuse | Legislation and Public Policy | Litigation | Medical Devices and Wearables | Medicare and Medicaid | Pharmaceuticals | Private Insurers
On October 10, Rivkin Radler’s Jeff Kaiser will be a panelist at the Practising Law Institute (PLI) program, “Life Sciences 2019: Navigating Legal Challenges in the Drug and Device Industries.” Jeff will speak on “Enforcement Trends Impacting the Drug and Device Industries,” including developments under the False Claims Act, federal Anti-Kickback Statute, off-label promotion, and …
Read More
HHS Issues Limited HIPAA Waivers in Hurricane Areas
September 12, 2019 | Eric D. Fader | Electronic Health Records | HIPAA | Legislation and Public Policy
As it had done for previous hurricanes, the U.S. Department of Health and Human Services (HHS) recently issued a HIPAA Bulletin providing for a limited waiver of HIPAA sanctions and penalties for covered entities in Puerto Rico, Florida, Georgia, South Carolina and North Carolina in the aftermath of Hurricane Dorian. Such waivers are primarily intended …
Read More

Authors
show more

Get legal updates and news delivered to your inbox