OCR Director: “Tolerance for HIPAA Non-Compliance Is Low”
The Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”) and the National Institute of Standards and Technology (“NIST”) hosted the annual .. read more
Don’t Want to Bother with HIPAA Compliance? Budget For DHHS Settlement
The Department of Health and Human Services (“DHHS”) announced yesterday in a press release that, after a lengthy investigation, the Office for Civil Rights (“OCR”) .. read more
New Risk Analysis Policy Posted in Premium Member Section
First, thanks to the Premium Member who suggested that we clearly identify new content on the Premium Member section of the website. We always welcome .. read more
HIPAA Breach in Washington, DC.
If I don’t have a topic for a blog entry, all I apparently have to do is to wait a few days, and someone will .. read more
Federal HIPAA Lawsuit Against a Business Associate
The Minnesota Attorney General Lori Swanson has sued a debt collection company in federal court for HIPAA violations involving an employee’s laptop stolen in Minneapolis. .. read more
More Details of Senate Blasting of HIPAA Enforcement
In my November 14, 2011, post, I reported that the Senate Judiciary Subcommittee on Privacy, Technology, and Law had recently held a hearing to discuss .. read more
Another Gross HIPAA Overreaction
Kelly Petryszyn of The Morning Journal newspaper serving Northern Ohio reported on October 26, 2011, that New Life Hospice Center of St. Joseph at Mercy .. read more
Do You Have to Comply with the Red Flag Rule? | HIPAA Compliance
A health care practice recently asked me whether it had to comply with the Red Flag Rule now that “professionals” have been carved out of .. read more
Overreaction to the HITECH Business Associate Changes?
I recently received a letter from a medical group that had apparently purchased my Health Information Compliance Library. The letter required me to sign a .. read more