All posts by Leah Roffman

Constitutional Challenge to HIPAA

On September 6, 2013, Adheris, Inc. (“Adheris”), an inVentiv company that works with pharmacies and pharmaceutical manufacturers to send medication refill reminders and educational information regarding diseases to patients, filed suit against the U.S. Department of Health and Human Services (“HHS”).  Adheris alleges that certain provisions of the Final HIPAA Omnibus […]

Resource Launch: Introducing Cooley’s HIPAA Privacy and Security Enforcement Tracking Chart

Today, we added an exciting new resource to our blog: a tracking chart that provides an overview of select privacy and security settlements related to the Health Insurance Portability and Accountability Act (HIPAA). Included in the tracking chart are summaries of allegations, settlement amounts, descriptions of corrective action plans, and […]

Theft of Personal Data of 4 Million Patients in Illinois

On August 23, 2013,  Advocate Medical Group (“AMG”), Illinois’s largest health care network, announced that four computers housing the personal information of over four million patients were stolen in the burglary of an administrative building on July 15, 2013.  Upon discovering the burglary, AMG immediately notified local police, who are […]

Do Exchanges Protect Data Privacy? State Officials Worry

During the last several weeks, officials in multiple states including Alabama, Florida, Georgia, Kansas, Louisiana, Michigan, Montana, Nebraska, North Dakota, Oklahoma, South Carolina, Texas, and West Virginia have expressed concerns regarding data privacy risks presented by programs that assist consumers with enrollment in health insurance via the Health Insurance Exchanges […]

Pharmacist’s Snooping Leads to $1.8 Million Verdict in Indiana

On July 26, 2013, an Indiana jury awarded Abigail Hinchy $1.8 million for damages suffered as a result of a Walgreen Co. pharmacist, Audra Peterson,  impermissibly accessing and exposing her confidential medical records.  The Marion County Superior Court jury found that Peterson acted as a Walgreen employee when infringing upon Hinchy’s privacy […]

HIPAA Settlement Alert: WellPoint, Inc. Agrees to Pay $1.7 Million

On July 11, 2013, WellPoint, Inc. (“WellPoint”) entered into a Resolution Agreement (the “Agreement”) with the U.S. Department of Health and Human Services (“HHS”) to pay $1,700,000 to settle alleged privacy and security violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).  The Agreement does not contain […]

Report to Congress Shows Continuing Trend of Health IT Adoption

As our world has become increasingly paperless in recent years, the health industry has followed suit.  One illustration of this trend is the growing adoption of health IT by health care professionals, and in particular, the implementation of electronic health record (“EHR”) systems.  This transition was largely due to the […]