DEVELOPMENTS & COMMENTARY

HIPAA98imageGDPR matchup: The Health Insurance Portability and Accountability Act

This article first published in the IAPP’s Privacy Tracker blog. In this Privacy Tracker series, we look at laws from across the globe and match them up against the EU General Data Protection Regulation. The aim is to help you determine how much duplication of operational effort you might avoid as you ...

securityChina’s Cybersecurity Regulators Issue Procedural Rules to Strengthen Enforcement Power

For the past several years, the Cyberspace Administration of China (the “CAC”) has risen to a very important status among the Chinese national government’s agencies. However, it lacks a specific procedural law to empower it with specific enforcement actions. Against this background, the CAC issued the Provisions on Administrative Law ...

health carePublic Still Must Be Kept Private Under HIPAA

A not-for-profit health care system recently agreed to pay the Department of Health and Human Services (HHS) $2.4 million as part of a settlement over potential Health Insurance Portability and Accountability Act (HIPAA) violations. The incident at issue involved the system releasing a patient’s name to the press, consumer advocacy ...

SecuirtyGDPR Match Up: U.S. State Data Breach Laws

This article first published in the IAPP’s Privacy Tracker blog. In this Privacy Tracker series, we look at laws from across the globe and match them up against the EU General Data Protection Regulation. The aim is to help you determine how much duplication of operational effort you might avoid as ...

White HouseWhite House Releases Cybersecurity Executive Order

On May 11, 2017, the White House released its long-awaited Executive Order on cybersecurity (EO). The EO directs Executive Branch agencies to develop plans to assess and improve the cybersecurity of their own operations, based on the 2014 NIST Cybersecurity Framework; directs law enforcement and national security agencies to work ...

RESOURCES & UPDATES

HIPAAenforcementHIPAA Enforcement Actions by the Numbers

Protecting patient information is a central duty for both covered entities and business associates under the Health Insurance Portability and Accountability Act (HIPAA).  Should an entity subject to HIPAA fail to protect patient information, it may face possible enforcement action from the U.S. Department of Health and Human Services’ Office ...

2017Slide1DWT Releases Latest Health Care Breach Charts

Following the HITECH Act, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) issued regulations requiring HIPAA covered entities to provide certain notifications for breaches of unsecured protected health information. OCR provides data on its website for breaches affecting 500 or more individuals. To better understand trends ...

slide50Webinar Recording: FCC’s New Privacy Rules (Part 2)

Notice, Choice, and Prospects in the New Administration The FCC adopted new privacy and security rules for telecommunications carriers—including ISPs—on October 27. In this second of two webinars in DWT’s series examining the rules, DWT experts analyzed the core Notice and Choice rules’ requirements, provided perspectives on differences with the FTC’s ...

sensitiveHIPAA Starter Pack

HIPAA stands for the Health Insurance Portability and Accountability Act of 1996, but there’s a more to it than that. Immerse yourself in an introduction to one of the most talked about and relevant laws today. Every American under the Affordable Care Act should be aware of HIPAA. Individuals or companies ...

Webinar Recording: FCC’s New Broadband Security Rules (Part 1)

Do you know what’s required to comply with the Federal Communications Commission’s new broadband security and data breach rules? DWT experts in the privacy and communications fields walked through the answers step-by-step in the first of two webinars examining the FCC’s privacy regime in-depth. We described the phase-in schedule for the rules examined ...
LexBlog