Privacy and cybersecurity is at the forefront of everyone’s mind these days and, in 2018, the Office for Civil Rights (“OCR”) settled ten cases and prevailed in another before an Administrative Law Judge to the tune of $28,700,000. This is
Latest from Privacy and Cybersecurity Perspectives - Page 2
Federal Court Dismisses Federal Securities Class Action Based on Data Breach
For many years, the plaintiffs’ bar has been very active in bringing class action litigation against public companies immediately after the announcement of adverse news concerning a company, which many times triggers a decline in the company’s stock price. Since
Another HIPAA Breach, Another 6-Figure HIPAA Settlement
A Colorado Hospital reached an $111,400 settlement with the Office for Civil Rights (“OCR”) for failing to terminate a former employee’s access to electronic protected health information. OCR’s investigation uncovered that the hospital impermissibly disclosed electronic protected health information of
OCR Issues Anticipated RFI on HIPAA Modifications
The Request for Information on Modifying HIPAA Rules to Improve Coordinated Care is slated for publication in the federal register tomorrow. The Department of Health and Human Services’ Office for Civil Rights (OCR) issued an advance copy of the RFI
Six-Figure OCR Settlement for Three-Physician Practice Failing to Follow Policies
On Monday, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a $125,000 settlement with a three-physician allergy practice in Connecticut for HIPAA Privacy Rule violations. According to OCR’s press release and corrective action plan,
CMS to Seek Feedback on Reducing HIPAA Burdens
CMS recently sent a proposed request for information (RFI) to the Federal Office of Management and Budget (OMB) for review. The RFI would seek feedback on whether provisions of HIPAA present barriers or otherwise discourage coordination of care among providers,
The ABA Says Lawyers Have Obligations Before and After a Data Breach
In the age of the data breach, lawyers and law firms have a lot in common with comic book superheroes: they are locked in a relentless battle against a cunning, ever-changing threat. This past week, Foley & Lardner experienced a
Less is more: The Role of Data Retention Policies in Cybsesecurtity Preparedness
We’re all guilty of it. We keep things that we don’t need, like that pair of stone-washed jeans from 1992 that you hope will come back into style or your beanie baby collection that you blindly believe might be worth
Your Cybersecurity Program is Only as Strong as Your Weakest Vendor
In this third installation of our weekly series during National Cybersecurity Awareness Month, we examine the importance of vendor due diligence as part of an overall cybersecurity strategy. To do that, we are re-posting the 3-minute video we created earlier
Anthem Agrees to Pay Largest HIPAA Settlement at $16M for Massive Breach
More than three years ago, Anthem, Inc. reported to the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) that it suffered a cyber attack compromising the protected health information of nearly 79 million individuals. This breach