OCR Settles 5th Case Under Risk Analysis Initiative
On March 21, 2025, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a settlement with Health Fitness Corporation. OCR was investigating [...]
What Every Compliance Officer Should Know About Healthcare Audits
Governmental agencies and certain private entities are authorized to conduct healthcare audits of healthcare entities. Broadly speaking, an audit is a review or investigation of an entity’s [...]
HHS Policy Statement Limits Public Participation in Rulemaking
On Friday, February 28, 2025, the Department of Health and Human Services issued a policy statement stating that it would limit the extent to which members of [...]
Combating Penalties for Noncompliance With Reimbursement Practices
Penalties for noncompliance with reimbursement practices may be issued against healthcare organizations. A healthcare organization that does not follow proper methods of obtaining reimbursement from federal payor [...]
HHS Imposes $200,000 HIPAA Right of Access Civil Monetary Penalty Against OHSU
In early March of 2025, the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) announced that it had imposed a $200,000 civil monetary [...]
HIPAA Compliance vs ISO 27001
With data breaches rising, protecting sensitive information is essential for staying compliant and sustaining patients' trust. When it comes to HIPAA compliance vs. ISO 27001, many businesses [...]
Don’t Be the Victim of a Healthcare Cyberattack
According to the consulting firm McKinsey, in the early days of the COVID-19 pandemic, telehealth usage skyrocketed as patients and providers looked for ways to both safely [...]
January 2025 Healthcare Breaches Impact 2.7 Million Patients
In January 2025, the Department of Health and Human Services' Office for Civil Rights received 70 reports of large-scale data breaches (affecting more than 500 patients) in [...]
DMERx VP Pleads Guilty to $1B Healthcare Fraud Conspiracy
In 2023, the United States indicted Brett Blackman, of Johnson County, Kansas, Gary Cox, of Maricopa County, Arizona, and Gregory Schreck, of Johnson County, Kansas, with conspiracy to [...]
$1.5M CMP Imposed on Warby Parker for HIPAA Security Rule Violations
Warby Parker is a Delaware public benefit corporation, headquartered in New York City. It is a manufacturer and e-retailer of prescription and non-prescription eyewear. Warby Parker has [...]
