Data Privacy & Cybersecurity PracticeThe Office for Civil Rights (OCR) at the Department of Health and Human Services (HHS), which is the body responsible for enforcing certain regulations pursuant to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), is exercising its enforcement discretion to meet the needs of health care providers and patients during the COVID-19 (Coronavirus) public health emergency.
Read more »Tag: hhsocr
-
OCR Announces HIPAA Telehealth Security Waiver in Response to COVID-19 Pandemic Posted on: March 20, 2020 In: Data Privacy & Cybersecurity
-
Ransomware and the Paramount Importance of Evidence Preservation for Healthcare Entities Posted on: March 10, 2020 In: Data Privacy & CybersecurityOrganizations regulated by the Healthcare Information Privacy and Accountability Act (HIPAA) must take special care to preserve valuable forensic artifacts at the outset of a ransomware or other cybersecurity event. The HIPAA Breach Notification Rule presumes a cybersecurity incident has resulted in unauthorized access to unsecured protected health information and the burden shifts to the organization to show a low probability of the compromise of the health information it maintains.
Read more »
-
HIPAA Small Breach Notification Deadline is March 1, 2020 – The Clock’s Ticking to Submit to HHS/OCR! Posted on: February 27, 2020 In: Data Privacy & CybersecurityOrganizations that experienced a data incident in 2019 affecting the protected health information (PHI) of less than 500 individuals have just a few more days to submit their notification to the U.S. Department of Health & Human Services’ Office for Civil Rights (HHS/OCR).
Read more »
-
HIPAA Breach Reporting: Focus on Remediation in Responding to an HHS/OCR Investigation Posted on: February 25, 2019 In: Data Privacy & CybersecurityLast year was another banner year for HIPAA data breaches reported to the Department of Human Services Office of Civil Rights (HHS/OCR), and the reporting period hasn’t yet closed, as organizations experiencing breaches affecting fewer than 500 individuals have until 60 days after the end of the calendar year in which the breach occurred to make the report.
Read more »
Blog Search
Featured Posts
- March 08, 2022 FinCEN Alert: Malware/Ransomware Updates & New Perimeter Device Vulnerability
- February 14, 2022 Prevailing Wages: Who Needs to Pay Them & What Happens When They Don’t
- December 29, 2021 Recent Amendment to New York State Technology Law Demonstrates Rapid Evolution of Privacy Laws
- December 15, 2021 Which States Are Paying More Money in 2022: An Overview of Minimum Wage Increases Across the Country
- June 11, 2021 Using Artificial Intelligence to Track Growing Remote Workforce and Related Litigation Implications
- February 03, 2021 Trade Secrets Litigation Just Got More Complicated
Blog Tags
alabama
arkansas
audit
bank secrecy act
biometric data
breach notification
california
canada
ccpa
cisa
client notification
colorado
congress
connecticut
consumer notification
consumer rights
coronavirus
covid-19
cpra
cryptocurrency
cyber insurance
cybersecurity
cyber threat
cyberwarfare
data breach
data privacy
data protection
data security
delaware
department of commerce
email
employment
equifax
ethereum
eu
eu-u.s. privacy shield
european union
executive order
fbi
fcra
federal communication
federal trade commission
financial fraud kill chain
fincen
fraud
ftc
gdpr
hacking
healthcare
hhsocr
hipaa
holiday season
human resources
identity theft
illinois
incident response
information security
irs
legislation
legislative alert
malware
managed service providers
maryland
massachusetts
microsoft exchange servers
microsoft office 365
multi-factor authentication
multi-factor identification
new jersey
new mexico
new york
ninth circuit
nist
nist security controls
ofac
opt out
patching
personal data
personal information
phishing
protected health information
ransomware
regulations
reporting requirements
russia ukraine conflict
security posture assessment
social engineering
social media
statute
strengthening american cybersecurity act
supreme court
tax returns
utah
video-teleconferencing
virginia
w2
washington
websites
workplace policy
zoom