Deny Me My Records? Pay $85,000 under the HIPAA Right of Access! HIPAA & HITECH Act Blog by Jonathan P. Tomes
I have previously written about one of the easiest ways to get a civil money penalty (or a state sanction (see California)—that is, failing to .. read more
We Appreciate Your HIPAA Info Corrections and Concerns: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Alice M. McCart, J.D.
Jon Tomes and I really appreciate your calling to our attention any problems with our HIPAA compliance tools and this blog. We like to fix .. read more
Who’s the Biggest Ransomware Attack Target? YOU!: HIPAA & HITECH Act Blog by Jonathan P. Tomes
A recent, May 1, 2019, study by the endpoint security firm Cylance determined that the health care industry was the biggest target for malware attacks .. read more
Building Security—More Than Just Locks on the Doors: HIPAA & HITECH Act Blog by Jonathan P. Tomes
In this digital world, forgetting about something as low-tech as physical security of the building in which a covered entity or a business associate is .. read more
Health Care Data Security Generally Sucks: HIPAA & HITECH Act Blog by Jonathan P. Tomes
A recent study by Forescout Technologies, Inc., an internet of things (“IoT”) company in San Jose, California, concluded that the health care industry’s data security .. read more
Changed HIPAA and HITECH Penalties—a Boon or a Trap for the Unwary: HIPAA & HITECH Act Blog by Jonathan P. Tomes
The Department of Health and Human Services (“HHS”) has announced a new penalty structure for the civil money penalties (“CMPs”) for HIPAA violations that apparently .. read more
A Masochist’s Guide to Getting a Huge, Painful HIPAA Penalty: HIPAA & HITECH Act Blog by Jonathan P. Tomes
A cynic might wonder whether some covered entities, and now business associates, want to become famous (perhaps infamous would be a better word) and break .. read more
Business Associates Face the Same HIPAA Penalties as Covered Entities: HIPAA & HITECH Act Blog by Jonathan P. Tomes
The Attorney General of New Jersey recently announced a $200,000 settlement for a HIPAA violation with a business associate, one of the classic examples of .. read more
Security Breaches Aren’t the Only Compliance Risks! So Are Privacy Rights Violations: HIPAA & HITECH Act Blog by Jonathan P. Tomes
A recent announcement by the Dental Board of California has reinforced the notion that having a breach of security, such as a hacker’s gaining access .. read more
HHS Civil Money Penalties (“CMPs”) Aren’t the Only Ones! And Do You Need Insurance? HIPAA & HITECH Act Blog by Jonathan P. Tomes
UCLA Health recently settled a class action lawsuit against it for $7.5 million. The plaintiffs were victims of a hack attack on UCLA’s network that .. read more