[06/07/19]
Posted on June 7, 2019 in Health Information Technology
Published by: Hall Render
American Medical Collection Agency (“AMCA”), a collection agency that works primarily with health care companies, recently announced a breach of protected health information (“PHI”) and personally identifiable information (“PII”) affecting over 19.6 million patients. Quest Diagnostics and LabCorp, both clients of AMCA, have reported that their patients have been impacted by the incident. AMCA... READ MORE
Tags: AMCA, American Medical Collection Agency, HIPAA, PHI, PII, Protected Health Information
[06/04/19]
Posted on June 4, 2019 in Health Information Technology
Published by: Hall Render
The Office for Civil Rights (“OCR”) issued a factsheet detailing ten ways a business associate can be held directly liable for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), as provided by the Health Information Technology for Economic Clinical Health (“HITECH”) Act of 2009. Although covered entities are ultimately responsible... READ MORE
Tags: HIPAA, HITECH, OCR, PHI, Protected Health Information
[09/24/18]
Posted on September 24, 2018 in Health Information Technology
Published by: Hall Render
The Department of Health and Human Services Office for Civil Rights (“OCR”) fined three separate hospitals a cumulative total of $999,000 to settle potential violations of HIPAA arising from allowing film crews on premises to film a reality television show without first obtaining patient authorizations. The OCR Resolution Agreement can be found here. Generally, a... READ MORE
Tags: Business Associate Agreement, HIPAA, HIPAA Authorization, PHI, Protected Health Information
[02/21/17]
Posted on February 21, 2017 in Health Law News
Published by: Hall Render
Under the Breach Notification Rule, HIPAA covered entities are required to submit reports of certain breaches of unsecured protected health information (“PHI”) affecting fewer than 500 individuals to the Office for Civil Rights (“OCR”) on an annual basis. Covered entities must submit their breaches electronically through OCR’s breach notification web page, which can be... READ MORE
Tags: Breach Notification Rule, HIPAA, PHI, Protected Health Information, Security Rule