HIPAA Bulletins & Alerts

OIG publishes Resource Guide for measuring compliance program effectiveness
March 2017 

Are your HIPAA practices in sync with today's technology? Three notable HIPAA enforcement actions in 2017
February 2017

OCR releases HIPAA guidance on cloud computing services
October 2016 

OCR announces new initiative to investigate HIPAA breaches affecting fewer than 500 individuals
August 2016

OCR launches HIPAA Phase 2 Audits and announces deadline and focus areas
July 2016

Failure to execute a BAA results in $1.55 million fine for Minnesota hospital system
March 2016

New guidance and information from OCR and ONC on patient access to medical information
March 2016

Could this be you? ALJ Upholds $239,000 HIPAA Penalty for Lincare, Inc.
February 2016 

HIPAA settlement with University of Washington Medicine highlights need for organization-wide risk analysis
December 2015 

Government brings HIPAA criminal charges against drug company employees
November 2015 

Anthem Announces Largest Ever Health Care Industry Cyber Attack
February 2015

Don't Let This Be You: Provider Agrees to a $150,000 HIPAA Settlement in Potential Security Breach Matter
December 2014

HIPAA Back-to-Basics Bulletin Series: HIPAA Privacy Training
August 2014

Hospital System Discloses HIPAA Breach Affecting 4.5 Million Individuals
August 2014

$800,000 HIPAA Settlement in Alleged Medical Record Dumping Matter
June 2014

HHS Reports HIPAA Breaches Increased Substantially and Predicts More Enforcement in 2014
June 2014

HIPAA Back-too-Basics Bulletin Series: HIPAA Compliance in the Social Media Era
June 2014

HIPAA Back-to-Basics Bulletin Series: Roles and Key Functions of Privacy and Security Officers
May 2014

HIPAA Back-to-Basics Bulletin Series: PHI of Deceased Individuals and Sharing PHI with Family and Friends 
April 2014

HHS Announces Second Round of HIPAA Audits
April 2014

HIPAA Back-to-Basics Bulletin Series: Security Risk Analysis
March 2014

HHS Announces First HIPAA Settlement with a County Government
March 2014

HHS Issues Guidelines on HIPAA and Sharing Information Related to Mental Health
February 2014

HIPPA Back-to-Basics Bulletin Series: Annual Breach Reporting Deadline March 1
February 2014

Analysis of Final HIPAA Omnibus Rule: Notice of Privacy Practices
February 2013

Analysis of Final HIPAA Omnibus Rule: Research, GINA, Hybrid Entities and Other Miscellaneous Provisions
February 2013

Analysis of Final HIPAA Omnibus Rule: Enforcement Provisions
February 2013

Analysis of the Final HIPAA Omnibus Rule: Individual Rights Regarding Restrictions and Access
February 2013

Business Associates and Business Associate Agreements
February 2013

HHS Releases New Sample HIPAA Business Associate Agreement 
January 2013

Analysis of the Final HIPAA Omnibus Rule: Changes to Marketing, Sale of PHI and Fundraising Requirements
January 2013

Once More into the Breach: Major Changes in the HIPAA Breach Notification Requirements
January 2013

What You Will and Won't Find In the Final Omnibus HIPAA Rule
January 2013

Final Omnibus HIPAA Rule Issued by HHS 
January 2013 

OCR's First-Ever Settlement for a Breach Affecting Fewer Than 500 People
January 2013 

New HIPAA Tools for Mobile Devices
December 2012 

Computer Viruses Pose Security and HIPAA Challenges
October 2012 

CMS Has HIPAA Breaches Too
October 2012 

Another Costly HIPAA Breach
September 2012

Protecting Multimedia PHI
August 2012

OCR HIPAA Audit Contractor Comments on First Round of Audits
July 2012

HHS Settles First HIPAA Security Case Against State Agency
July 2012

Despite What GAO Says - OCR has a Plan
HIPAA Audit Protocols and OCR's Plan for Future HIPAA Audits
July 2012 

Office of Management and Budget Extends Review of Final HIPAA Regulations
June 2012

First Enforcement Action Under HITECH Breach Rules Results in $1.5M Settlement
March 2012

Hospital Pays $865,000 to Settle HIPAA Complaints
July 2011

Proposed Rule Modifies HIPAA's Accounting of Disclosures Requirements
July 2011

HHS Announces Second Penalty for Violations of HIPAA Privacy Rule
February 2011

Civil Monetary Penalty for Violations of HIPAA Privacy Rule
February 2011

Final Guidance on HIPAA Security Rule Risk Analysis Released
August 2010

New HIPAA-HITECH Proposed Regulations Issued
July 2010

HHS Posts List of Reported HIPAA Breaches Affecting 500 or More Individuals
February 2010