Search Results
The default setting for search results displays All Content. If you prefer to see recent content only, please adjust the date filter.
Filter your results:
Types
Topics
14 Results Found
OCR launches webpage with HIPAA FAQs on Change Healthcare cyberattack
The Department of Health and Human Services’ Office for Civil Rights April 19 launched a webpage answering HIPAA-related FAQs about the Change Healthcare cyberattack.
NIST updates HIPAA cybersecurity resource guide
The National Institute of Standards and Technology this week released updated guidance to help HIPAA-covered entities and business associates assess and manage cybersecurity risks to electronic protected health information and comply with the HIPAA security rule.
In wake of cyberattack, OCR investigating Change Healthcare compliance with HIPAA rules
The Department of Health and Human Services’ Office for Civil Rights is initiating an investigation into the Change Healthcare cyberattack, the agency announced March 13in a “Dear Colleague” letter.
OCR updates HIPAA guidance on use of online tracking technologies
The Department of Health and Human Services’ Office for Civil Rights March 18 released updated guidance for HIPAA-covered entities and business associates on using online tracking technologies.
HHS will not appeal AHA court victory in online tracking case
The U.S. Department of Health and Human Services will not appeal its loss in American Hospital Association v. Becerra. The AHA, joined by the Texas Hospital Association, Texas Health Resources, and United Regional Health Care System, last November sued HHS to bar enforcement of a new rule adopted in guidance by the Office for Civil Rights titled “Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates,” which prevented hospitals and health systems from using standard third-party web technologies that capture IP addresses on key portions of their public-facing webpages.
HHS says hospitals impacted by Change Healthcare cyberattack can delegate breach notifications to UnitedHealth Group
The Department of Health and Human Services May 31 announced that hospitals and health systems can require UnitedHealth Group to notify patients if their data was stolen during the Change Healthcare cyberattack Feb. 22.
Cassidy proposes ways to strengthen health data privacy
Senate Health, Education, Labor & Pensions Committee Ranking Member Bill Cassidy, R-La., Feb. 21 released a report proposing ways to modernize the existing HIPAA framework and protect health and other data not covered by HIPAA.
AHA files brief in its challenge to HHS online tracking rule
The AHA Jan. 5 filed its opening brief in its lawsuit challenging a December 2022 rule issued by the Department of Health and Human Services’ Office for Civil Rights that restricts the use of standard third-party web technologies that capture IP addresses on portions of hospitals’ public-facing webpages.
AHA shares comments with Congress for hearing on strengthening ERISA
In a statement submitted April 16 to the House Committee on Education and the Workforce Subcommittee on Health, Employment, Labor, and Pensions for a hearing on ways to strengthen the Employee Retirement Income Security Act, AHA urged Congress to prevent commercial insurer practices that harm patients and small providers.
OCR finalizes rule prohibiting certain reproductive health care disclosures
The Department of Health & Human Services’ Office for Civil Rights April 22 released a final rule prohibiting entities regulated by the HIPAA Privacy Rule from using or disclosing protected health information to investigate or prosecute patients, providers or others involved in providing legal reproductive health services.