500

Smaller HIPAA Breaches To Get More Attention by Office for Civil Rights

By Joseph J. Lazzarotti on August 19, 2016

Posted in Data Security, Health Information Technology, HIPAA, Information Risk, Written Information Security Program

The HIPAA breach notification rule has two buckets for classifying data breaches – those that involve “protected health information” (PHI) of 500 or more individuals and those that involve fewer than 500 individuals. Since the breach notification rule became effective, the Office of Civil Rights’ (OCR) focus has been on the 500 and over bucket.…

Iowa Amends Its Breach Notification Law, Attorney General Notification Required For Breaches Affecting More Than 500 Iowans

By Joseph J. Lazzarotti on April 15, 2014

Posted in Data Security, Identity Theft, Information Risk, Written Information Security Program

Iowa made changes to its breach notification law (Iowa Code § 715C.1 et seq.) when the state’s Governor, Terry Branstad, signed S.F. 2259 into law. The amendment makes the following key changes which become effective July 1, 2014:

The existing law applies to “computerized” personal information. The amendment clarifies that this includes personal

…

Workplace Privacy, Data Management & Security Report

500

Smaller HIPAA Breaches To Get More Attention by Office for Civil Rights

Iowa Amends Its Breach Notification Law, Attorney General Notification Required For Breaches Affecting More Than 500 Iowans

Jackson Lewis

About Jackson Lewis