Monday Morning Rounds with CMS
In case you missed it, this is recent communication from the Centers for Medicare & Medicaid Services. Subscribe to their email lists to keep up to date on all press and news releases.
Read MoreHIPAA
Do Apps Protect Female Health Data?
By Matthew Fisher – mHealth applications focused on women’s health are drawing a fair amount of attention when it comes to privacy practices. These FemTech applications are designed to help individuals personally track different aspects of their health. How does FemTech approach privacy?
FTC Continues Healthcare Action
By Matthew Fisher – On the heels of recent settlements concerning the use of personal and health information, the Federal Trade Commission is continuing its push on the healthcare front. The latest action is the finalization of changes to the Health Breach Notification Rule.
More FTC Privacy Action
By Matthew Fisher – The FTC recently reasserted itself into the privacy discussion when it comes to healthcare information. Given the defined scope of HIPAA that does not cover a number of growing areas where healthcare data can be found, it is important to remember that agencies beyond the HHS OCR can act to require protection.
Right of Access Again, but with a Twist
By Matthew Fisher – The OCR announced yet another settlement action involving the HIPAA Right of Access. It is a reminder that right of access remains a focal point for OCR even though cyberattacks formed the basis for settlements announced earlier in 2024.
Developing Secure HIPAA Compliant Healthtech Software
By Harikrishna Kundariya – The process of HIPAA-compliant software development is complicated and requires the implementation of efficient design, solid security policies, and a consistent focus on data protection.
HIPAA Security Rule and Security Risk Assessments in Healthcare
By Art Gross – While HIPAA is all about protecting patient privacy, the Privacy Rule is just one of five areas of regulation. When it comes to annual requirements, the other heavy hitter is the Security Rule, which focuses on securing technology.
Coming Together: Part 2 and HIPAA
By Matthew Fisher – HHS released a final rule that will establish greater alignment between Part 2 (privacy of substance use disorder treatment records) and HIPAA. They kicked off the process with a notice of proposed rulemaking that was published on 12/2/22.
Cybersecurity Performance Goals and HIPAA
By Art Gross – With cyber-attacks on the rise in healthcare, HIPAA enforcer, the Department of Health and Human Services, has taken proactive measures to enhance the sector’s resilience against these growing threats.