The Office for Civil Rights (OCR) will assume responsibility for enforcing the “Confidentiality of Substance Use Disorder (SUD) Patient Records” regulations at 42 CFR part 2 (“Part 2”), which protect the privacy of patients’ SUD treatment records. The announcement was published in the Federal Register on August 26. The Part 2 regulations predate HIPAA and [...]| The HIPAA E-Tool
Another major hospital system has settled a class action lawsuit over the breach of patients' sensitive protected health information (PHI) on its MyChart portal. Mount Sinai Health System (Mount Sinai), the largest hospital network in New York City, will pay $5.26 million to settle claims. This is the second recent announcement by a major health [...]| The HIPAA E-Tool
Avoid costly audits and investigations with strong HIPAA compliance. OCR enforcement is focused on Risk Analysis and ransomware prevention.| The HIPAA E-Tool
The UnitedHealth Group holds the record for the largest healthcare data breach in history. The 2024 data breach at Change Healthcare, a UHG subsidiary, affected over 190 million individuals. UHG recently revised that number upward to 192.7 million, according to a letter Change Healthcare sent to New Hampshire's attorney general. UnitedHealth Group is facing scrutiny [...]| The HIPAA E-Tool
A jury decided that Meta violated California privacy law by using consumers' private health information for commercial purposes without consent.| The HIPAA E-Tool
BJC HealthCare (BJC) has agreed to pay up to $9.25 million to resolve a class action lawsuit alleging that it disclosed patients' protected health information (PHI) to third parties without the patients' knowledge or consent. Patients who used the BJC portal, MyChart, from June 2017 through August 2022 are eligible to obtain a cash payment [...]| The HIPAA E-Tool
The Integrated Oncology Network was hacked via a phishing email in December and now faces HIPAA investigations and breach of privacy lawsuits.| The HIPAA E-Tool
The latest HIPAA enforcement action, against Deer Oaks, a behavioral health provider, underscores the importance of conducting a thorough HIPAA risk analysis. Yesterday, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a settlement with Deer Oaks – The Behavioral Health Solution (Deer Oaks), a behavioral health provider, resolving [...]| The HIPAA E-Tool
High-pressure tactics are fueling healthcare fraud attacks on patients and providers. Learn how to recognize and fight back against cybercrime.| The HIPAA E-Tool
A federal judge in Texas has invalidated the 2024 HIPAA Reproductive Health modifications to the Privacy Rule. The decision is immediate and applies nationwide. Background on HIPAA Reproductive Health In 2022, the Supreme Court decided Dobbs v. Jackson Women's Health Organization, which removed the federal right to abortion. States promptly began to restrict reproductive health [...]| The HIPAA E-Tool
Gargle is a dental marketing services vendor with customers nationwide. When a misconfiguration left its data vulnerable, millions were exposed.| The HIPAA E-Tool
Shields Health faces a $15.35 million settlement of proposed class action lawsuits, demonstrating the importance of HIPAA compliance and privacy.| The HIPAA E-Tool
The latest HIPAA enforcement action from the Trump administration underscores the importance of a thorough HIPAA risk analysis every year.| The HIPAA E-Tool
A Security Rule update is coming, and you can prepare now to get ahead of the changes by strengthening your cybersecurity practices today.| The HIPAA E-Tool
The keys to success for HIPAA compliance start with four core concepts but expand to fit your unique situation. Seek improvement, not perfection.| The HIPAA E-Tool
This HIPAA training outline covers all the key topics and will boost your confidence, whether you are starting new or improving existing training.| The HIPAA E-Tool