Categories
Highlight

Ways your Healthcare Company is Breaking the Law — Without Realizing it

According to the U.S. Department of Health & Human Services’ Breach Portal, sometimes called the “Wall of Shame,” 418 breaches of HIPAA were reported in 2019. Some 34.9 million Americans had their protected health information (PHI) compromised. How is this still happening? Healthcare companies and practices make the biggest mistake by believing human behavior can […]

Categories
Alert

OCR Settles Tenth Investigation in HIPAA Right of Access Initiative

Riverside Psychiatric Medical Group (“RPMG”) has agreed to take corrective actions and pay $25,000 to settle a potential violation of the HIPAA Privacy Rule’s right of access standard. RPMG, based in Riverside, California, is a group practice specializing in child and adolescent psychiatry, geriatric psychiatry, neuropsychiatry, psychology, and substance use disorders. OCR received a complaint […]

Categories
Article

Private Schools and the Intersection of HIPAA and FERPA

My wife works as an Administrative Assistant at a local private school. As you might expect, they take very seriously their responsibility to help stop the spread of COVID-19 in the community. As part of their efforts, they require students who were in direct contact with persons diagnosed with COVID-19 to quarantine at home, away […]

Categories
Alert

Data Breaches Can Result in Federal and State Liability

Regulatory bodies continue to impose severe penalties on covered entities who fail to protect patient data from unauthorized disclosure. Community Health Systems, Inc. recently settled claims with HHS Office of Civil rights resulting from a 2014 data breach that exposed personal information of approximately 6.1 million patients for $2.3 million. But settlement with the federal […]

Categories
Alert

OCR Settles Eighth Investigation in HIPAA Right of Access Initiative

Since 2019, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) has been prioritizing enforcement actions against covered entities that do not allow patients timely access to their health records at a reasonable cost as required by HIPAA. This month, OCR settled an eighth investigation for $160,000 and […]