HIPAA


OCR Updates Mobile Health App Resources
September 25, 2020 | Eric D. Fader | Cybersecurity | Electronic Health Records | HIPAA | Legislation and Public Policy | Medical Devices and Wearables | Telehealth
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) recently unveiled a new website with updated guidance and resources for mobile health app developers regarding the HIPAA Privacy, Security, and Breach Notification Rules. The new Resources for Mobile Health Apps Developers site replaces OCR’s prior Health App Developer Portal. The new site’s Health …
Read More
GA Orthopedic Practice in $1.5M HIPAA Settlement
September 23, 2020 | Eric D. Fader | Cybersecurity | Electronic Health Records | HIPAA | Litigation
On September 21, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a $1.5 million agreement with Athens Orthopedic Clinic PA to settle “longstanding, systemic noncompliance” with the HIPAA Privacy and Security Rules. OCR’s investigation was triggered by a 2016 data breach that affected more than 200,000 of Athens Orthopedic’s patients. …
Read More
OCR Announces Five HIPAA “Right of Access” Settlements
September 17, 2020 | Ada (Kozicz) Janocinska | Behavioral Health | Electronic Health Records | HIPAA | Legislation and Public Policy | Litigation
On September 15, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced five new settlements relating to enforcement of HIPAA’s right of access rule. Under HIPAA, patients have the right to timely access to their medical records, as recently discussed here. A HIPAA covered entity must respond to a patient’s …
Read More
Phishing Scam Targets HIPAA Compliance Officers
August 21, 2020 | Ada (Kozicz) Janocinska | Fraud and Abuse | HIPAA | Hospitals
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) recently warned healthcare providers and organizations about a new phishing scam that targets HIPAA Compliance Officers. Postcards are being mailed to various healthcare organizations that appear to be an official communication from OCR, stating that a mandatory HIPAA compliance risk assessment must …
Read More
RI Health System Paid $1 Million HIPAA Settlement
July 28, 2020 | Eric D. Fader | Electronic Health Records | HIPAA | Hospitals | Litigation
After a long quiet period, the second HIPAA settlement to be announced by the U.S. Department of Health and Human Services (HHS) in an orchestrated one-two punch was far more costly to the second violator. Lifespan Health System Affiliated Covered Entity paid $1,040,000 to HHS’s Office for Civil Rights (OCR) in June for failing to …
Read More
NC Health Center Pays HIPAA Settlement
July 27, 2020 | Eric D. Fader | Electronic Health Records | HIPAA | Litigation
The U.S. Department of Health and Human Services (HHS) announced on July 23 that Metropolitan Community Health Services (Metro) paid $25,000 to HHS’s Office for Civil Rights (OCR) to resolve HIPAA violations. Metro, a Federally Qualified Health Center, operates two multidisciplinary medical clinics in eastern North Carolina under the name of Agape Health Services. Metro …
Read More
SAMHSA Updates Part 2 Rules
July 15, 2020 | Eric D. Fader | Behavioral Health | HIPAA | Legislation and Public Policy
On July 13, the Substance Abuse and Mental Health Services Administration (SAMHSA) announced the adoption of revised Confidentiality of Substance Use Disorder Patient Records regulations in an effort to improve care coordination for substance abuse patients and reduce the burdens on their providers. The revisions to the regulations, commonly known as the Part 2 Rules …
Read More
COVID-19 Business Briefing: Telehealth
April 7, 2020 | Rivkin Rounds Staff | Behavioral Health | Cybersecurity | HIPAA | Home Health | Hospitals | Legislation and Public Policy | Private Insurers | Telehealth
On April 6, Rivkin Radler’s Eric Fader presented a COVID-19 Business Briefing on Telehealth. The Briefing covered recent developments in federal and state law and policy, and changes in private insurers’ policies, that have been aimed at encouraging the use of telehealth during the current public health emergency. This Business Briefing was the second in …
Read More
CARES Act: Behavioral Health and Substance Abuse Provisions
March 30, 2020 | Christopher J. Kutner | Behavioral Health | Electronic Health Records | HIPAA | Legislation and Public Policy | Telehealth
Several of the provisions in the Coronavirus Aid, Relief, and Economic Security Act (CARES Act) will help people with substance use disorders and the healthcare professionals who care for them. The Substance Abuse and Mental Health Services Administration will receive $425 million to address mental health and substance use disorder needs as a result of …
Read More
CARES Act Changes Privacy Rules for Substance Use Disorder Records
March 30, 2020 | Ashley (Osadon) Algazi | Behavioral Health | Cybersecurity | Electronic Health Records | HIPAA | Legislation and Public Policy | Litigation | Telehealth
The Coronavirus Aid, Relief, and Economic Security Act (CARES Act), signed into law on March 27, made some substantial changes to the confidentiality rules for substance abuse and mental health records to bring them in line with HIPAA confidentiality rules. Among the changes, a covered entity or business associate may now use or disclose substance …
Read More

Authors
show more

Get legal updates and news delivered to your inbox