Data Privacy & Cybersecurity PracticeIn 2014, a business associate of a healthcare entity was notified by law enforcement that it had suffered a cyberattack to the company's information system. The hackers were able to access and exfiltrate the health information of more than 6 million people from numerous entities served by the business associate. In addition to a fine issued by OCR, a related covered entity was sued and a multimillion-dollar settlement was reached. OCR placed the covered entity under a very detailed corrective action plan.
Read more »Tag: hhs ocr
-
The Next Major Public Health Crisis Posted on: October 15, 2020 In: COVID-19 Response
Blog Search
Featured Posts
- May 10, 2022 NCAA Takes Action to Address “Collectives” and “Booster” Involvement in NIL Activity
- May 09, 2022 Can Your Coffee Maker Be Hacked? Cybersecurity Issues and the Growing Internet of Things
- April 15, 2022 Federal Law Ends Mandatory Arbitration of Sexual Harassment and Sexual Assault Claims
Blog Tags
alabama
arkansas
audit
bank secrecy act
biometric data
blockchain
breach notification
california
canada
ccpa
cisa
client notification
colorado
congress
connecticut
consumer data
consumer notification
consumer rights
coronavirus
covid-19
cpa
cpra
cryptocurrency
cyberattack
cyber insurance
cybersecurity
cyber threat
cyberwarfare
data breach
data privacy
data protection
data security
delaware
email
employment
equifax
eu
eu-u.s. privacy shield
european union
executive order
fbi
fcra
federal trade commission
fincen
fraud
ftc
gdpr
hacking
healthcare
hhsocr
hipaa
holiday season
human resources
identity theft
illinois
incident response
information security
irs
legislation
legislative alert
malware
managed service providers
maryland
massachusetts
microsoft
microsoft exchange servers
microsoft office 365
multi-factor authentication
multi-factor identification
new jersey
new mexico
new york
ninth circuit
nist
nist security controls
opt out
personal data
personal information
phishing
privacy law
privacy protection patchwork
protected health information
ransomware
regulations
reporting requirements
russia ukraine conflict
social engineering
social media
statute
strengthening american cybersecurity act
supreme court
tax returns
utah
video-teleconferencing
virginia
w2
washington
websites
workplace policy
zoom