Home > Insights > Blogs > Health Law Checkup > "PHI"

Health Law Checkup

Health Law Checkup

(By accessing, browsing or using the pages below, you agree to the Blog Conditions of Use/Disclaimer available under "Links.")

Posts

Population health, care coordination, and HIPAA: Do you need patient authorization or a business associate agreement?

Tonya Oliver Rose March 5, 2020
Stethoscope over a laptop computer keyboard

As more health care entities implement population health and care coordination initiatives, questions arise concerning the application of HIPAA to such efforts. Although HIPAA applies to protected health information used and shared by covered entities in connection with population health activities, in many circumstances HIPAA permits the use and sharing of such PHI without patient authorization or business associate agreements. READ MORE

OCR reminds business associates of direct liability for noncompliance with HIPAA Rules

Milada Goturi June 10, 2019
medical-doc-pen_000006111484-650x510

The HHS Office for Civil Rights has issued a new fact sheet addressing direct liability of business associates for violations of HIPAA Rules. The fact sheet serves as a reminder that business associates have direct liability under HIPAA and are subject to enforcement for Rule violations. READ MORE

OCR seeks public input on potential modifications to the HIPAA Rules

January 4, 2019
Doctor holding tablet

The Office of Civil Rights has asked for public input how the agency might modify the HIPAA Privacy, Security and Breach Notification Rules in a Request for Information. The 50 questions in the RFI reveals notable insights for the OCR’s future plans to improve care coordination and reduce regulatory burdens. READ MORE

OCR: No privacy breach is too small

Milada Goturi September 1, 2016
HIPAA folder

Once mainly focused on large data breaches affecting 500 or more individuals, the OCR now intends to increase HIPAA enforcement actions on smaller breaches of unprotected protected health information. READ MORE

OCR issues new guidance on individuals’ access to PHI: Is your access policy compliant?

Milada Goturi January 19, 2016
health-future-medical-app_23855425774_o

The OCR indicated that based on its enforcement experience, many individuals are having difficulties obtaining such access even as technology evolves, and new treatments make it important for individuals to have ready access to their PHI. READ MORE

Recent HIPAA settlements emphasize importance of robust compliance program

Milada Goturi December 9, 2015
security-shield_23592119646_o

Two recent HIPAA settlements remind organizations subject to HIPAA of the importance of having a robust HIPAA privacy and security compliance program in place. READ MORE