The Health Insurance Portability and Accountability Act requires all federally covered healthcare entities and associates to follow strict guidelines on the release of protected health information to law enforcement personnel and agencies. In some cases, a subpoena is required while other permissions are based on a patient's actions or statements. In the end, it is up to hospital officials and their business associates to craft patient health data policies that comply with the HIPAA Privacy Rule to avoid fines from the U.S. Department of Health and Human Services' Office for Civil Rights.
By Zach Winn · February 21, 2017
The decision represents a rare outcome for HIPAA non-compliance, which is often resolved with a settlement.
By CS Staff · February 02, 2017
The Office for Civil Rights' caseload has increased dramatically over the last five years.
By CS Staff · January 30, 2017
The lawmakers hope to reverse the department's expansion under the Obama administration.
By CS Staff · January 13, 2017
The HIPAA settlement is the first to enforce the notification rule.
By CS Staff · January 11, 2017
The settlement comes after the healthcare system self-reported the potential disclosure of 31,800 people's protected health information.
By CS Staff · October 20, 2016
The school's response to allegations against the officer was one of several Title IX violations referenced in the agreement.
By CS Staff · September 15, 2016
The settlement stems from the theft of an unencrypted laptop from an unlocked car in 2013.
By CS Staff · August 10, 2016
The agreement also calls for the creation of PHI policies and a corrective action plan.
By CS Staff · July 15, 2016
The university agreed to take several steps to correct the violations discovered by the Office for Civil Rights.
By CS Staff · July 11, 2016