March 8th, 2019


To Disclose or Not to Disclose? Understanding Law Enforcement Exceptions to HIPAA Policies

Guidance on how practices can determine when to disclose protected health information to law enforcement officials or agencies.

View Full Story »

February 11th, 2019


Perspective on New HHS Cybersecurity Guidance

Documents outline key data security strategies for healthcare organizations.

View Full Story »

March 29th, 2018


Custodial Care Issues: Minors and Custody Disputes

The final post in our custodial care series helps practices navigate competing requests for children’s medical records from parents in a custody dispute.

View Full Story »

March 27th, 2018


Custodial Care Issues: Parents of Sexually Active Teens

Our series on custodial care issues takes a look at what information parents may and may not access about their minor children’s sexual activity.

View Full Story »

March 22nd, 2018


Custodial Care Issues: The Patient with Diminished Capacity

In the second post of this series, an attorney from our outside counsel network explores custodial care issues related to patients with diminished capacity.

View Full Story »

March 16th, 2018


Custodial Care Issues: The Geriatric Patient

This first post in a series about custodial care looks at issues surrounding aging patients.

View Full Story »

October 30th, 2017


HHS Office of Civil Rights Issues Guidance on Information-Sharing Under HIPAA to Address the Opioid Crisis

The release points to situations where patient information may be shared with family or close friends.

View Full Story »

September 7th, 2017


The Human Resources Side of HIPAA Violations

Medical Mutual’s on-call HR advisor explains the steps practices need to take to address the HR implications of potential HIPAA violations by employees.

View Full Story »

Have You Recently Updated Your Business Associate Agreement?

The Department of Health and Human Services and the Office of Civil Rights announced in September that Care New England Health System agreed to settle potential violations of the HIPAA Privacy and Security rules. Learn why and how business associate agreements should be updated to include assurances that associates are meeting updated HIPAA Privacy and Security rules.

View Full Story »

October 1st, 2015


Are You Prepared for Phase 2 of OCR’s HIPAA Audit Program?

Trish Markus, a partner with Smith Moore Leatherwood law firm, discusses Phase 2 of OCR’s HIPAA Audit Program, which will begin in 2016. Trish highlights a number of steps organizations can take to proactively reduce the risk of enforcement activity in the event they are chosen for this audit and, if they are not, to reduce the likelihood of other HIPAA enforcement activity in the future.

View Full Story »

July 31st, 2014


Security Breaches on the Rise — Are You Covered?

Security breaches are becoming a larger part of practicing medicine than they should be. A 2013 HIMSS Leadership Survey reported that 19% of health IT professionals from provider organizations indicated their organization faced a security breach within the past year.

The U.S. Department of Health & Human Services frequently publishes violations of HIPAA Privacy and Security Rules on their site. The latest release highlights two breaches resulting from lost and stolen unencrypted laptops with assessed fines and penalties totaling almost $2M in the aggregate.

View Full Story »

October 30th, 2013


HIPAA Final Rule Guide — Spanish Versions of Select Forms Now Available!

Spanish versions of the Notice of Privacy Practices and the Patient Acknowledgement and Consent are now available on our website.

We hope the HIPAA Final Rule Guide has helped your practice to better monitor staff and physician compliance with HIPAA and to update practice policies and processes for protecting the privacy and security of PHI.

View Full Story »

September 26th, 2013


HIPAA Final Rule Guide — Spanish versions of select forms soon to be released

Spanish versions of the Notice of Privacy Practices and the Patient Acknowledgement and Consent will be available on our website by October 2nd.

View Full Story »

August 26th, 2013


Reminder: HIPAA Final Rule Compliance Deadline is Sept. 23rd

The HIPAA Final Omnibus Rule compliance date, September 23, 2013, is fast-approaching. Our HIPAA Final Rule Guide is designed to ease your compliance burden and will prepare you for the implications of the new rule.

View Full Story »

July 25th, 2013


Countdown to Compliance: Access Your HIPAA Final Rule Guide Today!

September 23rd will be here before you know it. From a new compliant Business Associate Agreement to an updated Notice of Privacy Practices, the HIPAA Final Rule Guide offers what your practice needs to help prevent most HIPAA violations and to assure that if a breach occurs, you can respond appropriately.

View Full Story »