0

OCR Settles with New York Covered Entity that Impermissibly Disclosed Patient’s HIV Protected Health Information to Employer

May 26, 2017. On May 23, 2017, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) issued a news release pertaining to a resolution agreement and [...]

0

OCR Settles HIPAA Security Risk Violations with St. Joseph Health Integrated Health Care Delivery System for $2.14 Million

October 19, 2016. On October 18, 2016, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) announced in a news release entitled: $2.14 million HIPAA [...]

0

ONC’s Guidance on Mobile Device Safeguards for ePHI Requires a Careful Look and Implementation

October 17, 2016. In the previous post on the Office for Civil Rights (OCR) recently released Guidance on HIPAA & Cloud Computing, Question #7 was: “Do the HIPAA Rules allow health care [...]

0

OCR Settles Diverse HIPAA Violations with Advocate Health Care Network for $5.55 Million

August 5, 2016. On August 4, 2016, the Office for Civil Rights (OCR) the HIPAA privacy, security, and HITECH Act breach enforcement arm of the U.S. Department of Health and Human Services (HHS) [...]

0

OCR Announces Another Huge HIPAA Violation Settlement and Corrective Action Plan July 18 Week: This One for $2.75 Million

July 22, 2016. The Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) announced on July 21, 2016, a $2.75 million settlement with the University of [...]

0

Oregon Health and Science University Settles Widespread HIPAA Violations for $2.7 Million and 3-Year Probationary Compliance Term

The Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) announced on July 18, 2016, a $2.7 million settlement with Oregon Health and Science University (OHSU), [...]

0

OCR Issues New Fact Sheet Identifying How the HIPAA Security Rule Can Address Ransomware

On July 11, 2016, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) published a document entitled: Fact Sheet: Ransomware and HIPAA. The purpose of the [...]

0

OCR Issues New Audit Protocols Tailored to Desk Audits, Not Necessarily to Design and Implementation of Policies and Procedures

April 15, 2016. On April 1, 2016, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Resources (HHS) published on its Website the long-awaited Audit Protocol-Current, [...]

0

OCR’s Audit Pre-Screening Questionnaire: How Health Plans Must Respond

April 15, 2016. On April 1, 2016, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Resources (HHS) published on its Website its Audit Pre-Screening Questionnaire. We [...]

0

Recent Article on HIPAA Safeguard Compliance Audits Highlights Need for Tighter Business Associate Agreements

April 7, 2016. HIPAA Integrity recommends that you read the March 28, 2016, Modern Healthcare article by Joseph Conn entitled: “HHS amps up vendor HIPAA audits,” which focuses on the role of [...]

page 1 of 2