07.28.22
01.28.22
Trends to watch on 2022 Data Privacy Day
Data Privacy Day is an opportunity to reflect on the security and regulatory challenges facing our data-rich world. The Nixon Peabody Cybersecurity & Privacy team shares trends to watch when it comes to protecting sensitive date.
Category Cybersecurity
12.30.21
Five enforcement actions signal continuing OCR focus on HIPAA...
Healthcare providers should ensure that they are responding properly to patient records requests, and charging compliant copy fees.
Category Privacy
10.04.21
Lessons learned from OCR's Right of Access Initiative enforcement
What takeaways can we glean from two years of OCR HIPPA Right of Access Initiative enforcement?
Category Trending
08.27.21
New CISA guidance provides practical tips for preventing and...
This guidance serves as an important reminder of the steps an organization should take to protect the personal information and other sensitive data that it holds from a ransomware event.
Category Cybersecurity
07.20.21
More than decade-long snooping of patient records finally...
The Aultman Health Foundation (Aultman), an Ohio-based health system with more than 7,000 employees, announced that the patient records of more than 7,000 patients may have been accessed by an employee without authorization for whom such access was outside their job duties.
Category Privacy
06.29.21
Delay in providing access to medical records leads to financial...
OCR, in its nineteenth Right of Access Initiative settlement, again emphasizes that health care providers of any size must ensure timely patient access to medical records.
Category Privacy
06.24.21
Don’t forget physical safeguards for data privacy when...
Returning to an in-person work environment can present challenges that suddenly seem as novel as complying with a new 2021 law. So as business come back to fuller in-person operation after COVID-19, we are reminding those with bricks-and-mortar operations to make sure that they re-engage with the in-person elements of their data breach protection policies.
Category Privacy
06.09.21
OCR enforcement emphasizes the importance of HIPAA Security...
Georgia clinical laboratory agrees to a robust Corrective Action Plan and $25,000 settlement amount for “systemic noncompliance” with the HIPAA requirements.
Category Privacy