Tag Archives: HIPAA Privacy Rule

FAQs by Employers Regarding the Anthem Breach

Do we have any legal obligations under HIPAA? It depends on your contractual relationship with Anthem and whether the group health plan offered by your company is self-insured. If your company’s group health plan is self-insured and your company contracts with Anthem to administer the plan, process claims, etc., then your company’s group health plan … Continue Reading

HHS Considers Amending HIPAA Privacy Rule to Permit Disclosure of Mental Health Information for Firearm Background Checks

By Cory J. Fox on May 10, 2013 Posted in HIPAA/HITECH, Medical Privacy

Adding yet another wrinkle to the nation’s contentious gun control debate, the U.S. Department of Health and Human Services (HHS) has released an Advance Notice of Proposed Rulemaking (ANPRM) soliciting information and public comment on possible amendments to the HIPAA Privacy Rule to permit disclosure of limited mental health information to the National Instant Criminal … Continue Reading

Be Careful What You Wish For: The Final Rule Is Out

By BakerHostetler on January 23, 2013 Posted in HIPAA/HITECH, Medical Privacy

The long awaited HIPAA/HITECH final rule is out. Data Privacy Monitor contributors Theodore J. Kobus III and Lynn Sessions held a webinar that covered what stands out as big changes and how healthcare organizations need to prepare. Have the standards just been juggled or will healthcare organizations need to change their approach? View Webinar Recording. Ted and Lynn have helped … Continue Reading

WEBINAR: The HIPAA/HITECH Final Rule is Out

By BakerHostetler on January 18, 2013 Posted in HIPAA/HITECH, Medical Privacy

The long awaited HIPAA/HITECH final rule is out. Please join Data Privacy Monitor contributors, Theodore J. Kobus III and Lynn Sessions for a webinar that will cover what stands out as big changes and how healthcare organizations need to prepare. Have the standards just been juggled or will healthcare organizations need to change their approach? A … Continue Reading

Minnesota A.G. Files Lawsuit Against “Infused” Business Associate for Loss of Patient Data Stored on Laptop; Use of Patient Data Without Full Disclosure

By John Mulhollan on February 6, 2012 Posted in Data Breaches

In perhaps the first widely publicized action taken against a “business associate” (as defined under the Health Insurance Portability and Accountability Act (HIPAA) and privacy and security regulations thereunder), the Minnesota Attorney General (AG) on January 19 filed a civil lawsuit in federal court against Accretive Health, Inc., for alleged violations of HIPAA, as well … Continue Reading

Update: Final HITECH Act Regulations Amending HIPAA Privacy And Security Will Be Published In 2012

By John Mulhollan on January 11, 2012 Posted in HIPAA/HITECH, Medical Privacy

During 2011, informal indications were given by the HHS Office of Civil Rights (OCR) and various industry experts that the final HITECH Act regulations amending the HIPAA privacy and security regulations would be published by the end of 2011. However, as of January 6, 2012, the regulations continue to be delayed, due to the numerous … Continue Reading

HHS to Propose New Privacy Standards for Human Research Subjects

By Lynn Sessions on July 27, 2011 Posted in HIPAA/HITECH, Mobile Privacy

The Department of Health and Human Services (HHS) provided an Advanced Notice of Proposed Rule Making (ANPRN) on July 22, 2011, to enhance protections for medical research subjects, including standards around privacy and data security. The ANPRN seeks comments on how better to protect human research subjects while facilitating valuable research. The current Common Rule … Continue Reading