Tag Archives: CAP

Indiana AG Proposed Regulations Creating Corrective Action Plan Requirement and Cybersecurity Safe Harbor

By Joseph J. Lazzarotti on Posted in: Consumer Privacy, Data Breach Notification, Data Security, HIPAA, Information Risk, Written Information Security Program
A proposal by Indiana’s Attorney General Curtis Hill on Wednesday would add a significant step in the incident response process for responding to breaches of security affecting Indiana residents. On Wednesday, during a U.S. Chamber of Commerce virtual event, he announced his proposed rule designed to better protect Hoosiers from cyberattacks. It is expected that … Continue Reading

OCR Warns HIPAA Covered Entities: When You Learn About HIPAA Violations, Fix Them

By Joseph J. Lazzarotti on Posted in: Data Breach Notification, Data Security, Health Information Technology, HIPAA, Third Party Service Providers, Written Information Security Program
Roger Severino, Director of the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS), provides advice for HIPAA covered health care providers: When informed of potential HIPAA violations, providers owe it to their patients to quickly address problem areas to safeguard individuals’ health information According to OCR allegations, a … Continue Reading
LexBlog