Arizona Attorney General Mark Brnovich recently announced a settlement with healthcare software provider Medical Informatics Engineering Inc. and its wholly owned subsidiary NoMoreClipboard, LLC. This blog entry provides an overview of the case.
Continue Reading
Health Privacy
OCR Settles with Medical Imaging Services Company
Posted on
On May 6, 2019, the U.S. Department of Health and Human Services’ Office for Civil Rights announced that it had entered into a resolution agreement and $3 million settlement with Touchstone Medical Imaging. The settlement is the first OCR HIPAA enforcement action in 2019, following an all-time record year of HIPAA enforcement in 2018.…
Continue Reading
Federal Government Reduces Maximum Annual Penalties for Most Healthcare Privacy Violations
Posted on
On April 26, 2019, the U.S. Department of Health and Human Services reduced the available penalties for three out of the four tiers of privacy and security violations set forth in the HITECH Act. This blog entry provides an overview of the reductions.…
Continue Reading
China Ministries Jointly Release Guidelines for Protecting Personal Information Online
Posted on
On April 11, 2019, three Chinese bodies issued the Guide to Protection of Security of Internet Personal Information. This blog entry provides an overview of the Guide.…
Continue Reading
Dutch DPA Issues Guidelines on Privacy Policies Following Investigation
Posted on
On April 17, 2019, the Dutch Data Protection Authority issued six recommendations for companies, to be taken into account when drafting privacy policies. This blog entry provides an overview of the recommendations as well as the investigation which preceded their issuance. …
Continue Reading
Belgian DPA Publishes Updated List of Processing Activities Requiring DPIA
Posted on
The Belgian Data Protection Authority recently published the updated and final list of the types of processing activities which require a data protection impact assessment.…
Continue Reading
EDPB Releases Opinion on Interplay Between the Clinical Trial Regulation and the GDPR
Posted on
On January 23, 2019, the European Data Protection Board released an opinion on the interplay between the European Clinical Trials Regulation and the GDPR.…
Continue Reading
CCPA: Employers Should Consider Implications for Employee Benefit Plans
Posted on
Posted in Health Privacy, Workplace Privacy
As we move closer to implementation of the California Consumer Privacy Act of 2018, companies should consider how the new law could affect their operations in multiple ways – including, for example, data collected through their employee benefit plans.…
Continue Reading
HHS Publishes Health Industry Cybersecurity Practices
Posted on
The U.S. Department of Health and Human Services recently published “Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients,” which was developed by the Healthcare & Public Health Sector Coordinating Councils Public Private Partnership, a group comprised of over 150 cybersecurity and healthcare experts from government and private industry.…
Continue Reading
CIPL Co-Hosts Workshop on GDPR and Scientific Health Research
Posted on
On October 22, 2018, the Centre for Information Policy Leadership at Hunton Andrews Kurth LLP co-hosted a workshop in Brussels on “Can GDPR Work for Health Scientific Research?” with the European Federation of Pharmaceutical Industries and Associations and the Future of Privacy Forum to address the challenges raised by the GDPR in conducting scientific health research.…
Continue Reading