Late last week, the HHS Office for Civil Rights (OCR) and Office of the National Coordinator for Health Information Technology (ONC) released a security risk assessment (SRA) tool designed to help health care providers conduct risk assessments as required by the HIPAA Security Rule. Under the Security Rule, health care providers must perform risk assessments […]
Regulation
Alston & Bird Hosting Privacy, Innovation and Big Data Program Organized by the American Constitution Society
On March 25, Alston & Bird partner David Keating to moderate panel discussion organized by the American Constitution Society and Georgia State Bar on Big Data. Featured speakers are Georgia Tech’s Peter Swire, Acxiom’s Jerry Jones, FTC’s Cindy Liebes, and attorney Gerald Weber. David Keating, Partner and co-chair of the firm’s Privacy & Security team, […]
NIST releases final Cybersecurity Framework
The National Institute of Standards and Technology (“NIST”) has released the final version of the much-anticipated Framework for Improving Critical Infrastructure Cybersecurity (the “Framework”). The Framework was developed by NIST at the direction of President Obama’s February 12, 2013, Executive Order 13636, “Improving Critical Infrastructure Cybersecurity” (the “Executive Order”). The Framework largely retains the structure […]
EU Data Protection Regulation May Be Delayed
January 27, 2014 – EU justice commissioner Viviane Reding said in a speech this week to a meeting of justice and home affairs ministers in Athens that the draft General Data Protection Regulation will not be agreed during the EU Parliament’s current term. As a result, the Regulation is unlikely to be voted on until […]
New CMS and OCR Rule Provides Patients with Access to Laboratory Test Results
Today, the Centers for Medicare & Medicaid Services (CMS), the HHS Office for Civil Rights (OCR) and the Centers for Disease Control and Prevention (CDC) published a final rule in the Federal Register, amending the Clinical Laboratory Improvement Amendments of 1988 (CLIA) regulations and the HIPAA Privacy Rule to provide patients with greater access to their lab […]