Your prescribed dose of health law news
On August 23, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced that Massachusetts-based New England Dermatology, P.C., d/b/a New England Dermatology and Laser Center (NEDLC), agreed to resolve alleged HIPAA violations for a fine of $300,640.
OCR commenced an investigation of NEDLC after the provider filed a breach report…
In the next installment of Rivkin Radler’s Healthcare Compliance Lunch & Learn series, Ashley Algazi will discuss requirements and tips for success in conducting HIPAA breach assessments and making required disclosures. The program will:
• Review HIPAA breach definition
• Discuss the analysis and investigation process to determine whether a breach has occurred
• Review…
Oklahoma State University’s Center for Health Services recently paid $875,000 to settle potential HIPAA violations after a cyberattack resulted in the unauthorized access of its patients’ protected health information. A hacker installed malware on the Center’s web server which contained electronic protected health information. More than 275,000 individuals were affected by the breach, which resulted…
On June 13, the U.S. Department of Health and Human Services (HHS) issued guidance to explain how audio-only telehealth can comply with HIPAA, while also emphasizing that this mode of telehealth services can expand healthcare access to individuals who may have limited internet and broadband capabilities.
In response to the COVID-19 pandemic in March 2020,…
On Thursday, June 16, in the next installment of Rivkin Radler’s Healthcare Lunch & Learn series, firm partners Frank Izzo and Wendy Sheinberg will present a program on Addressing Patient Capacity Issues. The program will take place from 12:00 noon to 1:00 PM Eastern time via Zoom.
The topics to be covered will include:
…
An article published on May 16 in Part B News, “Did your practice get burned online? Reach out — and redirect,” discussed how (or whether) professional practices should respond to negative reviews online from patients. Rivkin Radler’s Eric Fader was quoted in the article.
Eric said that he advised one of his…
On March 22, the U.S. Department of Health and Human Services (HHS) issued guidance clarifying the obligations of covered entities to require their business associates to comply with HIPAA Administrative Simplification requirements related to standards for electronic health care transactions, code sets, unique identifiers, and operating rules.
While these requirements apply only to covered entities,…
On March 28, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced four new enforcement actions against healthcare providers for HIPAA violations. Two of the actions were part of OCR’s HIPAA Right of Access Initiative which has been ongoing since 2019.
Three of the actions were against dental…
The U.S. Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) recently issued a report entitled “Electronic Medical Records in Healthcare” that discussed security risks applicable to electronic medical records (EMRs) and electronic health records (EHRs). EHRs and EMRs are prime targets for cyber attackers because protected health information (PHI)…
We don’t often cover brand-new proposed legislation on Rivkin Rounds, generally preferring to wait until it’s closer to becoming law. However, two bipartisan bills introduced in Congress last week are worthy of mention.
The Telehealth Extension and Evaluation Act would allow the Centers for Medicare & Medicaid Services to extend certain pandemic-era flexibilities in Medicare…
