Tag: HIPAA

Deadline Approaching for Reporting 2014 HIPAA Breaches

All covered entities that discovered security breaches under the Health Insurance Portability and Accountability Act (“HIPAA”) in 2014 should be aware of an upcoming reporting deadline.  Specifically, breaches that affected fewer than 500 individuals and were discovered in 2014 must be reported to the U.S. Department of Health and Human […]

HHS to Address Lack of Clarity Regarding Mobile Health

A letter from the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights to Rep. Peter DeFazio (D-Ore.) signals an intent to move forward with providing clearer regulatory guidance relating to the Health Insurance Portability and Accountability Act (HIPAA) rules addressing mobile health app developers.  The letter, […]

Next Round of HIPAA Audits to Begin “Expeditiously”

During a media roundtable held this week, the Director of the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) Jocelyn Samuels provided additional information regarding the long awaited next round of audits for compliance with the Health Insurance Portability and Accountability Act (HIPAA).  Specifically, she said […]

Obama Advocates Federal Breach Reporting Law

On January 12, 2015, President Obama delivered a speech at the Federal Trade Commission during which he set forth several proposals, including the Personal Data Notification and Protection Act (the “Act”).  The Act would institute a federal data breach reporting framework by requiring businesses that hold consumer data to issue […]

Alaska Provider Reaches HIPAA Settlement with OCR for Security Deficiencies

On December 8, 2014, the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) announced that Anchorage Community Mental Health Services (“ACMHS”) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).  ACMHS will pay a $150,000 penalty and also enter […]

Beth Israel To Pay $100,000 for Massachusetts Health Information Breach

Beth Israel Deaconess Medical Center (Beth Israel) reached a settlement with the Massachusetts Attorney General’s Office for a data breach in which a physically unsecured laptop was stolen containing personal and protected health information of nearly 4,000 patients and employees.  In May 2012, a physician’s laptop was stolen from his desk at […]

Connecticut Court Holds HIPAA Does Not Preempt Common Law Claim for Breach of Confidentiality

The Connecticut Supreme Court held that the federal Health Insurance Portability and Accountability Act (HIPAA) does not bar individuals from bringing negligence and emotional distress claims under state common law for breach of confidentiality against medical providers who unlawfully exposed their protected health information (PHI).  In an opinion released this […]