Header graphic for print
HealtHITech Law HIPAA, HITECH and Beyond

Monthly Archives: March 2016

HIPAA Breach Reports Trigger Investigations, Significant Settlements

Posted in Breach, Business Associate, Enforcement

The Office for Civil Rights (OCR) has announced two more significant HIPAA settlements involving covered entities. Both settlements were the result of investigations triggered by breach reports involving laptop thefts. And as is often the case, the investigations uncovered numerous HIPAA compliance issues above and beyond those which led to the breach. North Memorial Health Care… Continue Reading

Phase 2 of HIPAA Audits Set to Begin

Posted in OCR Audits

On Monday, the Office for Civil Rights (OCR) announced the long-awaited launch of Phase 2 of its HIPAA Audit Program.  OCR is required by the Health Information Technology for Economic and Clinical Health (HITECH) Act to establish a permanent compliance audit program for HIPAA covered entities and their business associates. OCR completed the first phase of testing for the… Continue Reading