OCR Issues Guidance on HIPAA, Health Information Exchanges, and Disclosures of PHI for Public Health Purposes
The Office for Civil Rights (OCR) at the US Department of Health and Human Services (HHS) issued guidance on how the Health Insurance Portability and Accountability Act of 1996 (HIPAA)…
Read More »OCR Issues Audit Report on Healthcare Industry Compliance with the HIPAA Rules
The Office for Civil Rights (OCR) at the US Department of Health and Human Services (HHS) released its 2016–2017 HIPAA Audits Industry Report that reviewed selected healthcare entities and business…
Read More »HHS Proposes Modifications to the HIPAA Privacy Rule to Empower Patients, Improve Coordinated Care, and Reduce Regulatory Burdens
The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) announces proposed changes to the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule…
Read More »Ransomware Attack on Maryland’s GBMC Health Spurs EHR Downtime
GBMC HealthCare in Maryland is currently operating under planned EHR downtime procedures, after falling victim to a ransomware attack on Sunday, December 6.
Read More »Montana Hospital Agrees to $4.2M Fund for Security Breach
Kalispell Regional Healthcare has agreed to establish a $4.2 million settlement fund to provide relief for individuals who allege they were impacted by a data breach of the hospital’s internal…
Read More »From COVID-19 to Ransomware, the Healthcare and Public Health Sector Battles Multiple, Simultaneous Threats
As COVID-19 infection rates rise, hospitals and healthcare facilities are understandably focused on protecting patients, staff, and providers from the virus — but COVID-19 is not the only rising threat…
Read More »Mayo Clinic Faces Multiple Lawsuits over Insider Privacy Breach
Mayo Clinic is facing multiple class action lawsuits over an insider data breach reported in October 2020 after they discovered a former employee had accessed the medical records of 1,600…
Read More »OCR Settles Twelfth Investigation in HIPAA Right of Access Initiative
The Office for Civil Rights (OCR) at the US Department of Health and Human Services (HHS) announces its twelfth settlement of an enforcement action in its HIPAA Right of Access…
Read More »Ransomware Activity Targeting the Healthcare and Public Health Sector (Update 2)
This joint message was coauthored by the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS).
Read More »Data Breach Affects 10,000 Tested for COVID-19 in Delaware
The Delaware Division of Public Health (DPH) announced November 15 that it is mailing letters to individuals who were impacted by a recent data breach incident and is providing information…
Read More »