Today, the Office for Civil Rights formally announced its HIPAA audit plan, with audits commencing in November 2011. A new page on OCR’s website answers some helpful questions for covered entities and business associates, which are summarized in this report.
Continue Reading OCR Announces HIPAA Audit Program
Provide Feedback to Government on Exchanging Health Information on Mobile Communications Devices
If you have an interest in the role the growing use of mobile communications devices (smartphones, iPads, iPhones, etc.) will play in how personal health information is exchanged in the health care industry, the Office of the National Coordinator for Health Information Technology (ONC) is seeking your input. According to a notice published Nov. 1, 2011 (76 Fed. Reg. 67455), comments are due Dec. 31.
Continue Reading Provide Feedback to Government on Exchanging Health Information on Mobile Communications Devices
New Director of Office of Civil Rights Speaks About HIPAA Enforcement
New director of the Department of Health and Human Services’ Office for Civil Rights, Leon Rodriguez, says, “enforcement promotes compliance.”
Continue Reading New Director of Office of Civil Rights Speaks About HIPAA Enforcement
HIPAA Audits to Begin Early 2012
Approximately 150 HIPAA on-site audits are scheduled to begin in early 2012. Covered entities and business associates should be aware of the nature and scope of these audits and what they should be doing to be prepare should they be selected.
Continue Reading HIPAA Audits to Begin Early 2012
HHS’ Text4Health Task Force Makes Health Texting Recommmendations
Text4Health Task Force Makes Health Texting Recommendations to HHS
Continue Reading HHS’ Text4Health Task Force Makes Health Texting Recommmendations
HHS Report to Congress Shows Marked Increase in Data Breaches
The Office of Civil Rights of the U.S. Department of Health and Human Services (“HHS”) has published its first round of annual reports to Congress under the HITECH (Health Information Technology for Economic and Clinical Health) Act of 2009 to Congress. The first report concerns HHS’s HIPAA (Health Insurance Portability and Accountability Act of 1996)
Alleged HIPAA Violation Supports State Common Law Negligence Claim
A Missouri federal district court has ruled, in I.S. v. Washington University, that a HIPAA-covered entity’s disclosure of protected information can form the basis for a state-law negligence claim. The Court reached this holding despite the well-accepted principle there is no private cause of action under HIPAA.
The plaintiff, I.S., was undergoing medical treatment
HHS Announces Proposed Changes to HIPAA Privacy Rule
The U.S. Department of Health and Human Services’ (HHS) announced proposed changes to the HIPAA Privacy Rule to implement new requirements concerning individuals’ rights to access reports and accountings of disclosures of their protected health information. The announcement seeks comments from the public as the agency hopes to craft the law so as to provide the greatest transparency for individuals with respect to access to and disclosures of their PHI, while minimizing the burden on covered entities and business associates.
Continue Reading HHS Announces Proposed Changes to HIPAA Privacy Rule
HHS’ Office of Inspector General Recommends More HIPAA Audits
Government report says HIPAA enforcement not sufficient to protect electronic health information and recommends more audits. The result may be more “compliance reviews,” audits, for covered entities and business associates.
Continue Reading HHS’ Office of Inspector General Recommends More HIPAA Audits
Hospitals Fire 32 Employees for Medical Privacy Breach
The Minneapolis Star Tribune has reported that two hospitals in Anoka County, Minnesota, terminated a combined total of 32 employees for unauthorized access of electronic medical records on May 6, 2011. The two hospitals, Unity Hospital in Fridley, Minnesota and Mercy Hospital in Coon Rapids, Minnesota, are both part of the Allina Health System. In April, the Minnesota Court