Insights

Rosemary Welsh, of counsel in the Vorys Cincinnati office, authored an article titled, “Ohio Implements Standard Authorization Form for Medical Records” for the May-June edition of the Cincinnati Bar Report.

As expected, the Supreme Court has just resolved a circuit split over the statute of limitations for non-intervened False Claims Act cases by maximizing the time a relator has to file a complaint.  The decision in Cochise Consultancy, Inc. v. United States ex rel. Hunt, No. 18-315 (May 13, 2019) will greatly expand a defendant’s time frame for potential FCA liability and lead to more cases involving faded recollections, costly document recovery, and potential damages for decades-old alleged fraud.

On April 30, 2019, the U.S. Department of Health and Human Services (HHS) published a notification of enforcement discretion in the Federal Register revising the maximum annual penalty amounts for breaches under the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

Last month, the United States District Court for the Northern District of Illinois confronted a bank’s potential liability for false information obtained (and even allegedly encouraged) by bank employees in the processing of consumer loans.

Jay Kelly, a partner in the Vorys Cincinnati office, authored an article titled, “To Compete or Non-Compete: Legal Developments Related to Non-Compete Agreements that could Impact the Restrictive Covenants in 3PL Employment Agreements” for 3PL Perspectives April 2019 edition.

In a recent decision, the United States District Court for the District of Minnesota held that the Department of Justice (DOJ) can still dismiss a qui tam filed under the False Claims Act even after it has declined to intervene in the case.

Vorys Partner Joe Brunner authored an article titled, “Data Breach Litigation: Defenses Against the Rising Tide” for the April 2019 edition of AHLA Connections.

The U.S. Supreme Court has vacated the Ninth Circuit’s decision approving a settlement between Google and a class of its users, based on unresolved questions regarding the users’ standing to bring their federal privacy claim.

Is a surviving spouse responsible for her deceased spouse’s medical bills if the creditor did not properly submit a claim against his estate?

On November 21, 2018, the Pennsylvania Supreme Court issued a far-reaching decision that “an employer has a legal duty to exercise reasonable care to safeguard its employees’ sensitive personal information stored by the employer on an internet-accessible computer system.”

Gone are the days of going on vacation to get away. As technology continues to advance, society has not only become increasingly dependent on the ability to remotely handle routine tasks, but also on the capability to deal with more complicated tasks such as reviewing and signing involved legal documents.

Recently, the Securities and Exchange Commission (SEC) imposed a $1 million penalty against Voya Financial Advisors, Inc. (VFA).

Canada’s new mandatory breach-notification requirements in the Personal Information Protection and Electronic Documents Act (PIPEDA) take effect on November 1, 2018.

Jay Kelly, a partner in the Vorys Cincinnati office, co-authored an article titled, “The Rules of The Road: Avoiding Ambiguity in Documenting Your Load” for 3PL Perspectives October 2018 edition.

On August 3, Governor John Kasich signed Senate Bill 220, also known as the Ohio Data Protection Act.

Yesterday, California enacted the California Consumer Privacy Act of 2018. The law imposes new regulations on the collection, use, and disclosure of consumers’ personal information that will significantly impact companies doing business in California.

The New York Court of Appeals (the state’s highest court) recently issued a potentially game-changing decision on pre-certification settlements in class actions.

Although the government has always had the authority to move to dismiss relator cases, it almost never does, to the great frustration of numerous defendants that have had to incur the costs and inconvenience of meritless False Claims Act (FCA) claims.

In February 2017, a jury in the Middle District of Florida found for a relator in an upcoding case against a nursing home operator, resulting in a total judgment of approximately $350 million.

As we begin the New Year, it’s time to re-visit and update your data incident response plan. Companies subject to the Payment Card Industry Data Security Standard (PCI-DSS) are required to do so to ensure compliance.