HIPAA


Diagnostic Imaging Provider Pays $3 Million to Settle Data Breach
May 7, 2019 | Eric D. Fader | Cybersecurity | Electronic Health Records | HIPAA | Litigation
Touchstone Medical Imaging has agreed to pay $3 million to settle HIPAA violations after an unsecured computer server exposed the medical records of 300,000 patients on Google in 2014. The U.S. Department of Health and Human Services (HHS) announced the settlement on May 6. Touchstone, based in Franklin, Tennessee, provides diagnostic imaging services in Nebraska, …
Read More
OCR Issues HIPAA FAQs on Software Apps
May 6, 2019 | Eric D. Fader | Cybersecurity | Electronic Health Records | HIPAA | Medical Devices and Wearables
The U.S. Department of Health & Human Services’ Office for Civil Rights (OCR) recently issued five new FAQs pertaining to software applications that obtain individuals’ electronic protected health information (ePHI). The FAQs describe various scenarios in which HIPAA covered entities may transmit ePHI to apps, including fitness trackers and other wearables. In short, a covered entity …
Read More
HHS Reduces Potential HIPAA Penalties
April 30, 2019 | Eric D. Fader | Cybersecurity | Electronic Health Records | HIPAA
The U.S. Department of Health and Human Services (HHS) has revised the potential monetary penalties that may be imposed on healthcare providers, health plans and business associates for HIPAA violations. HHS’s notice of enforcement discretion, issued on April 26, reduces the maximum annual penalty for less-severe violations from $1.5 million to as low as $25,000. The …
Read More
Amazon’s Alexa Now HIPAA-Compliant
April 18, 2019 | Eric D. Fader | Cybersecurity | Electronic Health Records | HIPAA | Home Health | Hospitals | Medical Devices and Wearables | Private Insurers | Telehealth
Amazon announced in a blog post on April 4 that its Alexa voice assistant’s operating environment now complies with HIPAA. Companies that build functions, or skills, for Alexa will now be able to create skills that involve the transmission of users’ protected health information. The initial group of six participants in an invitation-only program includes …
Read More
OCR May Alter HIPAA Rules to Ease Compliance, Care Coordination
February 28, 2019 | Rivkin Rounds Staff | Cybersecurity | Electronic Health Records | HIPAA | Legislation and Public Policy
An article in the March issue of Healthcare Risk Management discussed a Request for Information (RFI) released in December by the U.S. Department of Health and Human Services’ Office of Civil Rights (OCR). The RFI, which seeks public input on how the HIPAA rules may be modified to promote coordinated, value-based healthcare, was previously discussed …
Read More
CMS Proposed Rule Focuses on Patient Access to Health Info
February 21, 2019 | Eric D. Fader | Electronic Health Records | HIPAA | Hospitals | Legislation and Public Policy | Medicare and Medicaid
Yesterday’s Rivkin Rounds post discussed the Proposed Rule on information blocking recently released by the Office of the National Coordinator for Health Information Technology (ONC). The Centers for Medicare & Medicaid Services (CMS) simultaneously released its own 251-page Proposed Rule, addressing some of the same concerns but focused on interoperability and patients’ access to their …
Read More
ONC’s Proposed Info-Blocking Rule Includes Broad Exceptions
February 20, 2019 | Eric D. Fader | Electronic Health Records | HIPAA | Hospitals | Legislation and Public Policy
The Office of the National Coordinator for Health Information Technology (ONC) and the Centers for Medicare & Medicaid Services both recently released proposed rules regulating so-called information blocking, the practice of interfering with the exchange of electronic health information (EHI). Information blocking, a violation of HIPAA, occurs most commonly when a healthcare provider terminates its …
Read More
HIPAA Still Applies to Patients’ Online Reviews of Providers
February 15, 2019 | Cassandra Rivais DiNova | Electronic Health Records | HIPAA | Litigation
In an era of online dialogue, healthcare providers still need to remain alert regarding their obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA). As tempting as it may be to respond to patients’ criticisms and praise online, healthcare providers, as “covered entities” under HIPAA, should think twice before clicking “post.” It’s …
Read More
Rivkin Attorneys to Speak at “The Business of Medicine” Seminar
January 14, 2019 | Rivkin Rounds Staff | Employer/Employee | Fraud and Abuse | HIPAA | Hospitals | Medicare and Medicaid
Rivkin Radler’s Jeffrey Rust and Eric Fader will be among the presenters at “The Business of Medicine,” a seminar to be held on Saturday, January 26, 2019, at the Convene conference center, 101 Park Avenue (at 41st Street), New York, New York. Neuro Alert Services LLC, a multistate provider of intraoperative neurophysiologic monitoring services, designed …
Read More
OB/GYN Practice Liable to Patient for Breach of Confidentiality
January 7, 2019 | Eric D. Fader | HIPAA | Legislation and Public Policy | Litigation
A Connecticut state court ruled in December that an obstetrics and gynecology practice must pay a former patient close to $2 million, the latest round in an 11-year saga in which the case was appealed to the state Supreme Court twice. The defendant medical practice was found to have breached the confidentiality of the plaintiff’s …
Read More

Authors
show more

Get legal updates and news delivered to your inbox