Tag archives: PHI

Uber as a HIPAA business associate

Photo of Alexis Wilpon (US)By Alexis Wilpon (US) on Posted in General
Norton Rose Fulbright - Data Protection Report blogUber recently announced the launch of Uber Health, a non-emergency ride service that allows healthcare providers to schedule and pay for transportation for their patients. The stated purpose of the service is to expand medical transportation to traditionally underserved areas. Roughly 3.6 million Americans miss medical appointments each year due to lack of reliable transportation, contributing to the … Continue reading

HHS Update: Looking Toward Audits and Increased Enforcement

Photo of Anna Rudawski (US)Photo of Mark Faccenda (US)By Anna Rudawski (US) and Mark Faccenda (US) on Posted in Compliance and risk management, Regulatory response, Vendor management and transactions
Data Protection Report - Norton Rose FulbrightThe Department of Health and Human Services and its Office of Civil Rights (OCR) are capping off a very active 2016. In the last 6 months, the OCR has released a new audit protocol, announced new rounds of HIPAA audits, and stepped up enforcement. The flurry of activity comes after a prolonged period of anticipation in … Continue reading

Your Money or Your PHI: New Guidance on Ransomware

Photo of Mark Faccenda (US)Photo of Anna Rudawski (US)By Mark Faccenda (US) and Anna Rudawski (US) on Posted in Compliance and risk management, Data breach, Regulatory response
Data Protection Report - Norton Rose FulbrightOn June 12, 2016, the HHS Office of Civil Rights (OCR) released guidance, entitled “FACT SHEET: Ransomware and HIPAA,” in response to the rising number of ransomware attacks perpetrated against healthcare entities. The guidance addresses Health Insurance Portability and Accountability Act (HIPAA) issues that may arise when medical records containing Protected Health Information (PHI) are compromised … Continue reading
LexBlog