Update: September 2019

OCR Settles First Case in HIPAA Right of Access Initiative

This case involved a medical records request that took  over nine months to be processed.

Update: August 10, 2016

Hacker Offers 655,000 Stolen Health Records for Sale

The Centers for Medicare & Medicaid Services (CMS) recently learned of a potential security breach in which a hacker is offering for sale 655,000 records of orthopedic patients, according to an MLN Matters Special Edition Article (SE1616).

A hacker that goes by the name “thedarkoverlord” claims to be in possession of the healthcare records

Update: March 31, 2016

HIPAA Privacy, Security, and Breach Notification Audit Program

As  a part of our continued efforts to assess compliance with the HIPAA Privacy, Security and Breach Notification Rules the HHS Office for Civil Rights (OCR) has begun its next phase of audits.

Update: June 25, 2015

Can I Be Sued for a HIPAA Violation?

I am asked that question almost weekly. While the answer has traditionally been “no,” the legal landscape is shifting and the risk of being sued continues to increase.

Update: 2014

HIPAA Essentials for Small Businesses.