Connecticut AG prepares for amendments to Connecticut’s data breach law going into effect on Oct. 1, 2012.
Continue Reading Connecticut AG Makes Email Address Available to Companies to Report Data Breaches
Written Information Security Program
Massachusetts Health Care Provider, MEEI, Settles HIPAA Charges Following Stolen Electronic Storage Device
Another reported HIPAA breach results in $1.5 million dollar settlement between HIPAA covered entity and HHS’ Office of Civil Rights…
Continue Reading Massachusetts Health Care Provider, MEEI, Settles HIPAA Charges Following Stolen Electronic Storage Device
DOD, GSA, and NASA Propose New Rule Affecting Federal Contractor Requirements to Safeguard Government Information
Attention federal contractors – DOD, GSA and NASA propose adding a required contract clause for federal contractors to address data security.
Continue Reading DOD, GSA, and NASA Propose New Rule Affecting Federal Contractor Requirements to Safeguard Government Information
New York Tightens Protections on Social Security Numbers
A New York law, effective December 12, 2012, prohibits businesses and other entities from requiring individuals to disclose or furnish their Social Security Numbers for any purpose, subject to certain exceptions.
Continue Reading New York Tightens Protections on Social Security Numbers
Stolen Flash Drive Leads to Another HIPAA Data Breach
Burglary at hospital employee’s home results in stolen flash drive and HIPAA data breach…
Continue Reading Stolen Flash Drive Leads to Another HIPAA Data Breach
Alaska DHSS HIPAA Breach Affects 501 Individuals, But Results in $1.7 Million Settlement with HHS Following Compliance Review
By Joseph J. Lazzarotti on
HIPAA audit following breach reported to OCR results in findings of noncompliance, settlement payment of $1.7 million and a three-year corrective action plan.
Continue Reading Alaska DHSS HIPAA Breach Affects 501 Individuals, But Results in $1.7 Million Settlement with HHS Following Compliance Review
Massachusetts Company Fined $15,000 Under State’s Data Security Law
The Massachusetts AG’s enforcement of its data security law demonstrates that it does not take lightly the loss of Massachusetts residents’ personal information, even if that loss has not caused any known harm to the affected residents, and that it may remain watchful over the subject of an investigation for years to come.
Continue Reading Massachusetts Company Fined $15,000 Under State’s Data Security Law
Jackson Lewis White Paper Addresses Legal Risks Stemming From Occupational Health Nurses and On-site Health Clinics
Read Jackson Lewis’ white paper addressing legal risks stemming from occupational health nurses and on-site health clinics…
Continue Reading Jackson Lewis White Paper Addresses Legal Risks Stemming From Occupational Health Nurses and On-site Health Clinics
Debt Collection Agency Sued by Minnesota Attorney General Over Privacy Breach and Other Concerns
Like any business that handles personal information, debt collection agencies have obligations to maintain reasonable safeguards to protect that information. Recent enforcement activity by the Minnesota Attorney General’s office makes this clear. The banks, health care providers and other businesses that utilize collection services are also driving compliance as they demand these companies have…
Third Party Vendors Equal Data Breach Risk, Massachusetts Vendor Contract Deadline Approaches – March 1, 2012
Massachusetts service provider contract deadline – March 1, 2012 – should be a reminder to revisit all contracts with third party vendors to ensure they require the vendor to safeguard personal information.
Continue Reading Third Party Vendors Equal Data Breach Risk, Massachusetts Vendor Contract Deadline Approaches – March 1, 2012