News and Events

Latest Top (5) News

The Health Care Industry Cybersecurity Task Force Prompts HHS to Issue a Revised HIPAA Breach Reporting Tool

Elizabeth (Betsy) Rosen

Congress established the Health Care Industry Cybersecurity Task Force (the “Task Force”) in the Cybersecurity Act of 2015 (the “Act”) to address the challenges the health care industry faces when securing and protecting itself against cybersecurity incidents.  While all health care delivery organizations have a responsibility to secure their systems and patient data, many organizations...… Continue Reading

Fri, 04 Aug 2017 15:12:33 +0000

Regulators Offer Guidance on Privacy and Security for Health App Developers

Laura E. Goldsmith

This month, the Federal Trade Commission (FTC) issued guidance on privacy and security best practices for health-related mobile apps, such as fitness apps connected with wearables, diet and weight loss apps, and health insurance portals.  At the same time, the FTC unveiled an interactive tool designed to direct health app developers to federal laws and...… Continue Reading

Mon, 18 Apr 2016 21:36:48 +0000

Laptop Security Breach Leads to $850,000 HIPAA Settlement Payout

Ellen Moskowitz and Mara Wilber

On November 19, 2015, Lahey Hospital and Medical Center (“Lahey”) entered into an $850,000 settlement with the U.S. Department of Health and Human Services (“HHS”), Office for Civil Rights (“OCR”) for alleged violations of the Health Insurance Portability and Accountability Act of 1996 or “HIPAA”. As part of the settlement, Lahey must adopt a robust...… Continue Reading

Tue, 15 Dec 2015 18:00:12 +0000

Washington State Amends Breach Notification Law to Expand Notification Requirements

Chelsea Handler

On April 23, 2015, Washington State Governor Jay Inslee signed into law a bill strengthening the state’s data breach notification law (amending Wash. Rev. Code §§ 19.255.010 and 42.56.590 and creating a new section). H.B. 1078 makes the following substantial changes to the existing law: Under the current law, businesses and agencies that own or...… Continue Reading

Tue, 28 Apr 2015 19:21:26 +0000

OCR’s Enforcement of HIPAA’s Privacy and Security Rules Continues with Robust 2014

Douglas Dahl

With the news of the recent cyber-attack and resulting data breach at health insurance giant Anthem Inc., the buzz around data security and privacy is again high.  The Anthem breach serves as a reminder to those entities subject to the Health Insurance Portability and Accountability Act (HIPAA) that failing to keep protected health information secure...… Continue Reading

Fri, 20 Mar 2015 21:10:10 +0000

Latest Top (5) News

Latest Top (5) News