All posts by Stephanie Cason

Implications of the Cybersecurity Bill for the Health Care Industry

*This post is co-authored by Vince Sampson On Tuesday the Senate passed the Cybersecurity Information Sharing Act (CISA).  The House had passed a similar bill, the Protecting Cyber Networks Act, in April of this year.  The Act comes in the wake of many large scale data breaches, such as that suffered […]

HHS Launches HIPAA Platform for Medical Application Developers

On Monday, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) released an online platform designed for use by developers of mobile medical applications (apps).  The site allows users to submit questions regarding compliance with the Health Insurance Portability and Accountability Act (HIPAA) and to access […]

HHS To Launch New HIPAA Audits in Early 2016 in Response to OIG Reports

The Office of Inspector General (OIG) of the U.S. Department of Health and Human Services (HHS) issued two reports  yesterday calling for the HHS Office of Civil Rights (OCR) to strengthen its Health Insurance Portability and Accountability Act (HIPAA) enforcement efforts.   In response to these reports, HHS announced that it […]

Excellus is Latest in Line of BCBS Insurers Experiencing Cyberattack

Excellus, a BlueCross BlueShield (BCBS)  provider servicing upstate New York, announced last week that it was the latest in a string of BCBS providers that experienced a data breach as a result of a cyberattack.  CareFirst BlueCross Blue Shield, Anthem, and Premera Blue Cross all recently announced they were the victims of sophisticated cyberattacks […]

HHS OIG Approves Drug Company Program Providing Free Cancer Treatment Drugs

On Tuesday, the Health and Human Services (HHS) Office of Inspector General (OIG) issued an Advisory Opinion regarding a program to provide a 30-day supply of cancer drugs free of costs to patients who experience an insurance coverage determination delay of at least five business days (the Free Supply Program).  The […]

UCLA Health Announces It Was A Victim of a Cybersecurity Attack

UCLA Health announced today that it was the victim of a cybersecurity attack.  The press report  disseminated by UCLA Health noted there is evidence that computer systems containing sensitive personal data and health data was accessed; however, at this time UCLA Health maintains that no personal or health data itself was accessed […]

States Strengthen Laws Addressing Health Information Handling and Breach Response

Connecticut and Oregon were recently added to the increasing list of states  adopting stricter laws addressing the handling of health information and penalties in connection with breaches of health information.  Both states amended their respective data security and breach notification laws and they will now levy stricter requirements on entities that store or […]

CareFirst Discloses Data Breach

CareFirst, a Blue Cross Blue Shield plan serving the Washington D.C. metro area, became another in a line of health insurers to suffer a data breach as a result of hackers.  CareFirst and the FBI are examining the breach which potentially compromised 1.1 million customers.  The company reports that although […]

Updated Guide to Privacy and Security of Electronic Information Released by ONC and OCR

The Office of the National Coordinator for Health Information Technology (ONC) in collaboration with the Office for Civil Rights (OCR) recently released its new updated guidance for the privacy and security of electronic information.  The Guide to Privacy and Security of Electronic Health Information (the Guide), last published in 2011, is […]

Texas Medical Board Limits The Practice of Telemedicine in the State

The Texas Medical Board (the Board) voted last week to sharply restrict the practice of telemedicine in the state.  The rules adopted by the Board were the culmination of a four-year battle between the Board that licenses and regulates doctors in Texas and a national company based in Dallas that […]