HIPAA-regulated entities are asked to take steps to ensure full compliance with the current HIPAA security requirements, like data backup.

Anyone who has visited a doctor’s office in recent years likely signed a HIPAA consent form. The U.S. Department of Health and Human Services explicitly warns against the sort of arrangement ...

PIH Health, a health care entity located in California, suffered a data breach in June 2019 when 45 employee email accounts were compromised in a targeted phishing campaign. The accounts contained the ...

In Lawrenz’s response to Elliott’s request for an investigation, she said the issues raised around the HIPAA forms, as well the Evaluation to Sign Consent forms, were outside the scope of the ...

On April 23, 2025, the Department of Health and Human Services’ Office for Civil Rights (“OCR”) announced a HIPAA enforcement action against PIH Health, Inc. (“PIH”), a California-based health care ...

Consent and Authorization Challenges ... medical exams or fraud investigations. While HIPAA-covered providers (e.g., doctors submitting C-4 forms) are exempt when handling PHI, data shared with ...

“An autism registry feels very much like being put on a ‘list’ to be tracked without our consent or permission ... with any requests that violate HIPAA regulations.” ...

In today’s digital landscape, privacy policies have evolved from obscure legal documents into essential corporate governance ...

The complaint alleges that CRH’s use of the technology violates HIPAA, the federal patient privacy ... treatment to third parties without their consent.” CRH, for its part, recently filed ...

Simultaneously, these platforms can also ensure automatic adherence to compliance regulations such as HIPAA, GDPR and other data privacy laws, streamlining regulatory alignment without disrupting the ...

This bankruptcy underscores the need for better regulations concerning privacy protections and consent. Laws protecting ... Over the years since HIPAA and the Genetic Information Nondiscrimination ...