Topic: PHI

JD Supra Corporate Brief: SEC Priorities, Cybersecurity Lawsuits, H-1B Petitions, Knowledgeable Employees

On February 26, 1995, the UK’s oldest investment bank, Barings Bank, collapses when broker Nick Leeson loses $1.4 billion by speculating on the Singapore International Monetary Exchange. When the SEC Speaks, you should listen: highlights from the 2014 SEC Speaks Conference… (Perkins Coie) Will the Cybersecurity Framework open the door to a new wave of… Read more »

JD Supra Corporate Brief: Cybersecurity Checklist, Tax Reform, Iran Sanctions, Confidential Documents

Cold, colder, coldest? Fight the Arctic chill with a hot cup of coffee, a wool sweater, and the JD Supra Corporate Brief: Here’s a Top Ten cybersecurity checklist for boards of directors… (Ed Batts at DLA Piper) Canada is about to implement the harshest anti-spam law in the G-8 – and you need to know… Read more »

HIPAA Omnibus Rule Deadline is Sept 23rd – Here’s How to Comply…

On September 23, 2013, the Health Insurance Portability and Accountability Act Omnibus Rule goes into effect, significantly increasing the privacy and reporting obligations of covered entities and their businesses associates and subcontractors. Will you be ready? Five resources to help: DLA Piper’s HIPAA toolbox “If you are a covered entity or a business associate …… Read more »

Expensive Lessons in Privacy Law: Affinity Health Pays $1.2 Million for Not Erasing Photocopier Hard Drives

Earlier this month, Affinity Health Plan agreed to pay the Department of Health and Human Services more than $1.2 million to settle violations of the Health Insurance Portability and Accountability Act (HIPAA) privacy and security rules. Affinity – a not-for-profit managed care plan – failed to erase the protected health information of nearly 350,000 individuals… Read more »

JD Supra Corporate Brief: Can Openers, Anti-Competitive Agreements, Free Trade, Leased Photocopiers

On August 16, 2010, China officially surpassed Japan as the world’s second-biggest economy, just three decades after Deng Xiaoping opened the country to foreign investment, private competition, and the “socialist market economy.” This is why you don’t want to challenge a patent attorney to an argument… (Fenwick & West) 2015 will be here before you… Read more »

HIPAA Q&A: What’s the New Word on Data Breaches?

“The definition of a data ‘breach’ was changed. The Omnibus Rules replaced the more subjective ‘harm standard’ with a more objective test that requires the covered entity to determine (based on a four-factor risk assessment) whether protected health information has been ‘compromised.’” (Snell & Wilmer) One of the key components of the new HIPAA /… Read more »

Summary of Final Omnibus HIPAA/HITECH Rules

No time read all 563 pages of the US Department of Health and Human Services Office for Civil Rights’ HIPAA/HITECH Omnibus Rule? Here’s a summary of key points: Effective Date: “The Enforcement Rule changes are effective on March 26, 2013. The additional 180 days afforded for most of the provisions in the Final Rule apply… Read more »

New HIPAA Omnibus Rule Modifies Privacy and Breach Notification Requirements for Health Care Providers

“The Final Rule represents the most significant development in healthcare privacy law since the issuance of the final Privacy Rule and Security Rule a decade ago.” (Morgan Lewis) On January 17, 2013, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) released its final omnibus rule, strengthening the… Read more »

HIPAA Update: How to Turn Protected Health Information into Research Data

“HIPAA places tight restrictions on the use and disclosure of protected health information, but there are many ways to ‘de-identify’ it, freeing it from HIPAA’s constraints. Covered entities and business associates can use de-identification to reduce their exposure to HIPAA and expand their use of health data.” (Davis Wright Tremaine) On November 26, 2012, the… Read more »