On Wednesday, December 4, 2013, the HHS Office of Inspector General (OIG) issued a report raising concerns about the adequacy of the HHS Office for Civil Rights’ (OCR) oversight and enforcement of HIPAA’s Security Rule. The Security Rule establishes the administrative, physical, and technical safeguards that covered entities and their business associates are required to implement […]
Health Privacy
FTC Announces 2014 Spring Seminars Disclosing Future Regulatory Focus
Yesterday, the Federal Trade Commission announced three main topics that will be the focus of its Spring 2014 privacy seminars. The areas to be examined are: (1) Mobile Device Tracking; (2) Alternative Scoring Products; and (3) Consumer Generated and Controlled Health Data. The Mobile Device Tracking seminar, which is open to the public, will take […]
California Privacy Ballot Initiative Moves Forward: Act Would Amend California Constitution to Set Standards for Collection and Protection of Personally Identifying Information, including Financial and/or Health Information
California Secretary of State Debra Bowen has allowed signature collection to commence for a ballot initiative, named the Personal Privacy Protection Act, that could drastically alter the California privacy regime. The initiative, led by former state Senator Steve Peace and retired attorney Michael Thorsnes, seeks to amend the California Constitution to define personally identifiable information […]
HHS/OCR Posts HIPAA Privacy, Security and Breach Notification Audit Protocol
In our November 30, 2011 and March 7, 2012 posts, we discussed the HHS Office for Civil Rights (OCR) audit pilot program, which began in November 2011 and is expected to conclude in December 2012. The audit program has been developed pursuant to the requirements of the HITECH Act. Under the audit pilot program, OCR conducted an […]