Philadelphia Catholics Agree to $650,000 HIPAA Fine

Business Associates who fail to conduct health information risk assessments and adopt required security policies and procedures face a growing threat of discovery and fines. Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS) got more than a prayerful penance after violating HIPAA rules. The $650,000 fine imposed by HHS arose from the reported theft of a CHCS issued, unencrypted…

Share

Bona Fide Associations – Alright Already – Here are the Filings

In my last article, (Part Three – Bona Fide Associations…still waiting), I observed that the state regulatory filings for health plans issued to association trusts to be treated as large group plans were not available on the Washington Office of the Insurance Commissioner (OIC) website. Nothing has changed since July. Most industry insiders predict that…

Share

Final HIPAA Rules Require Notice Changes

On January 17, 2013, the Department of Health and Human Services (HHS) issued its final rules governing the Health Insurance Portability and Accountability Act (HIPAA) Privacy, Security, and Breach Notification. The regulations significantly change some provisions of the existing rules. “Covered Entities”  and “Business Associates” must comply with these new provisions by September 2013. The…

Share