Tag archives: Business Associate

HHS Update: Looking Toward Audits and Increased Enforcement

Photo of Anna Rudawski (US)Photo of Mark Faccenda (US)By Anna Rudawski (US) and Mark Faccenda (US) on Posted in Compliance and risk management, Regulatory response, Vendor management and transactions
Data Protection Report - Norton Rose FulbrightThe Department of Health and Human Services and its Office of Civil Rights (OCR) are capping off a very active 2016. In the last 6 months, the OCR has released a new audit protocol, announced new rounds of HIPAA audits, and stepped up enforcement. The flurry of activity comes after a prolonged period of anticipation in … Continue reading

Your Money or Your PHI: New Guidance on Ransomware

Photo of Mark Faccenda (US)Photo of Anna Rudawski (US)By Mark Faccenda (US) and Anna Rudawski (US) on Posted in Compliance and risk management, Data breach, Regulatory response
Data Protection Report - Norton Rose FulbrightOn June 12, 2016, the HHS Office of Civil Rights (OCR) released guidance, entitled “FACT SHEET: Ransomware and HIPAA,” in response to the rising number of ransomware attacks perpetrated against healthcare entities. The guidance addresses Health Insurance Portability and Accountability Act (HIPAA) issues that may arise when medical records containing Protected Health Information (PHI) are compromised … Continue reading
LexBlog