• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Health Privacy

New Jersey Enacts Health Information Encryption Requirement

January 13, 2015 By Privacy, Cyber & Data Strategy Team

New Jersey Governor Chris Christie has signed a new law requiring health insurance companies to protect client health information by encrypting the data. The law applies to any insurance company, health service corporation, hospital service corporation, medical service corporation, or health maintenance organization authorized to issue health benefits plans in New Jersey. These entities must take […]

Filed Under: Cybersecurity, Data Security, Health Privacy, Legislation, Regulation Tagged With: New Jersey

HIPAA/HITECH Act Accounting of Disclosures NPRM: Redux?

October 14, 2014 By Privacy, Cyber & Data Strategy Team

In May 2011, the Office for Civil Rights (OCR) of the U.S. Department of Health & Human Services (HHS) issued a proposed rule to modify the HIPAA Privacy Rule’s standard for accounting of disclosures of protected health information (PHI). The proposed rule would have implemented the HITECH Act’s requirement for covered entities and business associates […]

Filed Under: Advisories, Health Privacy Tagged With: HIPAA, HITECH

Alston & Bird Health Care Advisory: HIPAA Audit Program Phase 2 Update

October 2, 2014 By Privacy, Cyber & Data Strategy Team

We have previously blogged about the U.S. Department of Health & Human Services HIPAA Audit Program, including the Audit Program pilot (November 30, 2011 and March 7, 2012), the release of the Office for Civil Rights (OCR) audit protocols (June 26, 2012), and the status of phase 2 of the Audit Program (February 26, 2014 […]

Filed Under: Data Breach, Health Privacy, Security Breach Tagged With: Health Information Security, HIPAA, HITECH

Laboratories Must Comply with New HIPAA Patient Access Rules by October 6, 2014

September 28, 2014 By Privacy, Cyber & Data Strategy Team

HIPAA covered laboratories and hospitals with laboratories subject to the Clinical Laboratory Improvement Amendments of 1988 (“CLIA”) must comply with changes to the HIPAA Privacy Rule that provide patients with direct access to laboratory test results by October 6, 2014.  Earlier this year, the Centers for Medicare & Medicaid Services, the HHS Office for Civil […]

Filed Under: Health Privacy, Privacy, Regulation Tagged With: HIPAA

HIPAA Audit Program Phase 2: Delayed

September 16, 2014 By Privacy, Cyber & Data Strategy Team

A representative of the U.S. Department of Health and Human Services’s Office for Civil Rights (OCR) has recently revealed that OCR has delayed the start of phase 2 of its HIPAA Audit Program – and has revised its plans for phase 2. Previous Plans for Phase 2 Earlier this year, OCR had announced that phase […]

Filed Under: Health Privacy, Legislation, Workplace Privacy Tagged With: Health Information Security, HIPAA, HITECH

  • « Go to Previous Page
  • Page 1
  • Interim pages omitted …
  • Page 7
  • Page 8
  • Page 9
  • Page 10
  • Page 11
  • Page 12
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • Inside the SK Telecom Data Breach: What Happened and What Companies Can Learn
  • New York Department of Health Issues Urgent Cybersecurity Warning Following U.S. Strikes on Iranian Nuclear Facilities
  • Texas Enacts Responsible AI Governance Act
  • Back from the Brink: District Court Clears Air Regarding Individualized Damages Assessment in Data Breach Cases
  • UK Data Protection Regulator Fines 23andMe ~$3.1 Million Following Credential Stuffing Attack
Copyright © 2025 · Alston & Bird · All Rights Reserved. Privacy.
This website uses cookies to improve functionality and performance. By continuing to browse this site, you are consenting to the use of cookies on this website. OkCookie policy