Philadelphia Catholics Agree to $650,000 HIPAA Fine

Business Associates who fail to conduct health information risk assessments and adopt required security policies and procedures face a growing threat of discovery and fines. Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS) got more than a prayerful penance after violating HIPAA rules. The $650,000 fine imposed by HHS arose from the reported theft of a CHCS issued, unencrypted…

Share

Tougher Privacy Standards for Exchanges

TEASER: “We considered but declined to use the definitions for these terms provided under the HIPAA regulations because the protected health information (PHI) that triggers the HIPAA requirements is considered a subset of PII [Personally Identifiable Information], and we believe that the HIPAA definitions would not provide broad enough protections to satisfy the requirements under…

Share