Philadelphia Catholics Agree to $650,000 HIPAA Fine

Business Associates who fail to conduct health information risk assessments and adopt required security policies and procedures face a growing threat of discovery and fines. Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS) got more than a prayerful penance after violating HIPAA rules. The $650,000 fine imposed by HHS arose from the reported theft of a CHCS issued, unencrypted…

Share

Final HIPAA Rules Require Notice Changes

On January 17, 2013, the Department of Health and Human Services (HHS) issued its final rules governing the Health Insurance Portability and Accountability Act (HIPAA) Privacy, Security, and Breach Notification. The regulations significantly change some provisions of the existing rules. “Covered Entities”  and “Business Associates” must comply with these new provisions by September 2013. The…

Share