Last week, the Connecticut Attorney General (the “Connecticut AG”) announced that Hartford Hospital and its subcontractor, EMC Corporation (“EMC”), agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). The entities will collectively pay a $90,000 penalty and also sign an Assurance of Voluntary Compliance (an […]
Last week, Cancer Care Group, P.C. (CCG), an Indiana radiation oncology practice, agreed to settle alleged violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) by paying $750,000 and adopting a three year corrective action plan.
Beth Israel Deaconess Medical Center (Beth Israel) reached a settlement with the Massachusetts Attorney General’s Office for a data breach in which a physically unsecured laptop was stolen containing personal and protected health information of nearly 4,000 patients and employees. In May 2012, a physician’s laptop was stolen from his desk at […]
This week, Parkview Health System, Inc. (“Parkview”) agreed to pay $800,000 and enter into a Corrective Action Plan to settle allegations that Parkview violated the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). In 2008, Parkview took custody of between 5,000 and 8,000 medical records of patients for a retiring physician in order […]
The Centers for Medicare & Medicaid Services (CMS) released this week 28 new frequently asked questions (FAQs) related to reporting payments and transfers of value provided by applicable manufacturers and group purchasing organizations (GPOs) to physicians and teaching hospitals in connection with the federal Sunshine law. The FAQs generally relate […]
Last week, the U.S. Department of Health and Human Services (“HHS”) released two reports to Congress, pursuant to its obligations under the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”): a report on Breaches of Unsecured Protected Health Information for 2011 – 2012 (the “Breach Report”) and a […]
Last week, the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) reached settlements with two separate entities for alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). Specifically, Concentra Health Services (“Concentra”) agreed to pay $1,725,220 following the theft of an unencrypted laptop and the […]