Governor Cuomo signed the Stop Hacks and Improve Electronic Data Act (SHIELD) on July 25, 2019, providing stronger protections for New Yorkers by imposing strict cybersecurity requirements on all companies, broadening the Attorney General’s oversight over data breaches, and expanding data breach notification requirements.
Texas House Bill 4390 tightens the notification requirements related to a breach of sensitive personal information, requires notification to the Texas Attorney General in certain breaches, and creates an advisory council related to privacy issues.
On April 30, 2019, the U.S. Department of Health and Human Services (HHS) published a notification of enforcement discretion in the Federal Register revising the maximum annual penalty amounts for breaches under the Health Insurance Portability and Accountability Act of 1996 (HIPAA).
On March 26, 2019, the U.S. Senate Committee on Health, Education, Labor & Pensions held a hearing to evaluate a rule proposed by the Office of the National Coordinator for Health Information Technology ) to implement certain provisions of the 21st Century Cures Act (related to health information technology.
Congressmen Earl Blumenauer (D-OR) and Tim Murphy (R-PA) recently introduced the Overdose Prevention and Patient Safety Act (the act), a measure that would align the Confidentiality of Alcohol and Drug Abuse Patient Records regulations (42 C.F.R. Part 2) with the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA).
In October, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) released new guidance for covered entities and business associates that utilize cloud computing for data storage, software, or online access to shared resources and contract with cloud service providers (CSPs) for the service.
On Wednesday, June 11, 2014, the Substance Abuse and Mental Health Services Administration (SAMHSA) will hold a public listening session to solicit information regarding the Confidentiality of Alcohol and Drug Abuse Patient Records Regulations, 42 C.F.R. Part 2. Under these regulations, a federally assisted substance abuse program generally may only release identifiable patient information related to substance abuse treatment services with the individual’s express consent.
Lisa Pierce Reisz, a partner in the Vorys Columbus office and a member of the health care group, authored a portion of the first edition of the American Health Lawyers Association’s HIPAA/HITECH Resource Guide.
Lisa Pierce Reisz, a partner in the Vorys Columbus office and a member of the health care group, authored an article for Communications Professional Resources Online (CommPRO.biz). In the article, she provides an overview of the information that public relations professionals need to know about the latest HIPAA breach notification rules, which become law in September 2013.
Lisa Pierce Reisz, a partner in the Vorys Columbus office, and Stephanie Angeloni, an associate in the Vorys Akron office, authored an article about HIPAA compliance for the May 13, 2013 edition of Crain’s Cleveland Business.
On January 17, 2013, HHS announced the release of the long-awaited final omnibus HIPAA rule. According to HHS Office for Civil Rights Director Leon Rodriguez, "This final omnibus rule marks the most sweeping changes to the HIPAA Privacy and Security Rules since they were first implemented. ..."
Jonathan Ishee, of counsel in the Vorys Houston office and a member of the health care group, authored “Accountability in Cross-Jurisdictional Telemedicine and Health” for the November 2012 edition of the American Health Lawyers Association’s HIT News.