News & Analysis

October 18, 2019
Medicare Web

New York Gov. Andrew Cuomo signed legislation on October 7 that prohibits ambulance and first response service providers from selling patient information to third parties for marketing purposes.

October 17, 2019
Medicare Web

Q: We’ve had a breach of unsecured PHI regarding an out-of-state patient. What is your recommended first step in terms of which breach notification laws—state vs. federal—we need to comply with?

October 14, 2019
Briefings on HIPAA

In an interview with Briefings on HIPAA, Tim Noonan, deputy director for the Division of Health Information Privacy at OCR, discussed cybersecurity and trends in reports of unsecured PHI to OCR. This article includes the highlights.

October 11, 2019
Medicare Web

Elite Dental Associates has agreed to pay $10,000 to the Office for Civil Rights (OCR) for allegedly posting protected health information (PHI) on the social networking site Yelp, according to the U.S. Department of Health and Human Services.

October 10, 2019
Medicare Web

Q: If you discover that you have accidentally accessed a patient’s information on your facility’s computer system, what’s the best course of action? Who should you notify first? Are you at risk of being in trouble if you looked at the information before realizing the error?

October 7, 2019
Briefings on HIPAA

OCR meant what it said in February of this year about patients’ right of access to their medical records. The HIPAA Privacy and Security Rule enforcer issued its first enforcement action under its “Right of Access Initiative” in September.