Tag: HIPAA

Rhode Island Hospital Reaches Settlement with Massachusetts AG to Resolve Data Security Allegations

Last week, Women & Infants Hospital of Rhode Island (“W&I”) reached a settlement with the Massachusetts Attorney General to resolve allegations that W&I failed to adequately protect personal data stored on unencrypted backup tapes, violating both state and federal data security laws.  W&I has agreed to enhance its data security […]

Health System Agrees to Pay $800,000 following Improper Disclosure of Medical Records

This week, Parkview Health System, Inc. (“Parkview”) agreed to pay $800,000 and enter into a Corrective Action Plan to settle allegations that Parkview violated the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).  In 2008, Parkview took custody of between 5,000 and 8,000 medical records of patients for a retiring physician in order […]

HHS Issues Reports on HIPAA Breaches and HIPAA Compliance

Last week, the U.S. Department of Health and Human Services (“HHS”) released two reports to Congress, pursuant to its obligations under the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”): a report on Breaches of Unsecured Protected Health Information for 2011 – 2012 (the “Breach Report”) and a […]

Resource Launch – “Cloud Computing in Healthcare: HIPAA and State Law Challenges”

We are pleased to announce that a new resource has been added to our blog. On May 20, 2014, Cooley sponsored “Cloud Computing in Healthcare: HIPAA and State Law Challenges,” a presentation led by Cooley attorneys Matt Karlyn, Phil Mitchell, and Leah Roffman. The presentation began with a discussion of […]

HHS Attorney Advises to Expect More Aggressive HIPAA Enforcement

Jerome Meites, a chief regional civil rights counsel for the U.S. Department of Health and Human Services (“HHS”), provided important insight into upcoming HIPAA enforcement at the recent American Bar Association conference in Chicago .  Since June 2013, over $10 million has been paid by entities to settle alleged HIPAA violations.  Mr. Meites predicted that, […]

Two New York Providers Reach Largest HIPAA Settlement with OCR To Date

Earlier this week, the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) reached settlements with New York and Presbyterian Hospital (“NYP”) and Columbia University (“CU”) for alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).  The entities operate a shared data network […]

New HIPAA Settlements Show OCR’s Focus on Encryption

Last week, the U.S. Department of Health and Human Services’ Office for Civil Rights (“OCR”) reached settlements with two separate entities for alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).  Specifically, Concentra Health Services (“Concentra”) agreed to pay $1,725,220 following the theft of an unencrypted laptop and the […]