Health Care Reform Dashboard

Health Care Reform Dashboard

Charting Developments with the
Affordable Care Act and Beyond

HIPAA and Data Security

Subscribe to HIPAA and Data Security RSS Feed
12/02/2016

OCR Warns of Phishing as Business Associate Audits Begin

The Office of Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) has posted an alert (and a follow-up alert) warning health plans, health care providers, and their vendors of a mock communication involving the OCR audit program under the Health Insurance Portability and Accountability Act (HIPAA). The email falsifies HHS departmental letterhead [&hellip… Continue Reading »
11/04/2016

HHS Designates Cloud Service Providers as Business Associates Under HIPAA

Cloud service providers that process electronic protected health information (ePHI) are business associates under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), even if the PHI is encrypted and the cloud service provider is not able to view it. This unequivocal determination, made in recent guidance by the U.S. Department of Health and [&hellip… Continue Reading »
09/27/2016

Hot Topics in Employer Health Benefits

As we start looking forward to 2017, and as many employers head into annual enrollment periods this fall, it is necessary to account for changes in the law that have a significant impact on health benefit plans. This short list of significant developments may help you prepare for what is coming: Affordable Care Act (ACA) Reporting. The [&hellip… Continue Reading »
07/25/2016

OCR Announces First HIPAA Enforcement Action Against a Business Associate

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) announced an agreement with Catholic Health Services of the Archdiocese of Philadelphia (CHCS), settling allegations that CHCS violated the Health Insurance Portability and Accountability Act (HIPAA) Security Rule by failing to protect electronic protected health information (ePHI). This is the first enforcement [&hellip… Continue Reading »
07/25/2016

Check Your Desk: HIPAA Audits for Covered Entities Have Arrived

The Office of Civil Rights (OCR) of the Department of Health and Human Services has moved forward with Phase 2 of its Health Insurance Portability and Accountability Act of 1996 (HIPAA) audit program. On Monday, July 11, 2016, OCR sent emails to 167 covered entities (including health plans, health care, and health care clearinghouses) notifying them [&hellip… Continue Reading »
04/19/2016

HIPAA Audits Coming Your Way — Are You Ready?

The Office of Civil Rights (OCR) of the Department of Health and Human Services has begun Phase 2 of its audit program under the Health Insurance Portability and Accountability Act (HIPAA). In this phase, OCR will: ·       Collect contact information from covered entities and their business associates; ·       Audit selected covered entities and, later, business [&hellip… Continue Reading »
.