Category:

HIPAA & Health Information

Protected Health Information: Has it been Compromised?

Ryan Whitney Managing Editor Loyola University Chicago School of Law, JD 2017   HIPAA breaches occur on a daily basis. Although undesirable, many of these breaches are not serious enough to require patient notification. But others are more egregious and can cause harm to both the patient and the providing entity. This article outlines a …
Read more

Joint Guidance Confirms the Sharing of Health Information Subject to FTC Regulations, Not Only HIPAA

Logan Parker Privacy Editor Loyola University Chicago School of Law, LL.M. in Health Law 2017   On October 22, 2016, the Federal Trade Commission (“FTC”) in collaboration and conjunction with the Department of Health and Human Services’ Office for Civil Rights (“OCR”) released new guidance on key privacy and security considerations for organizations handling health …
Read more

HHS Finalizes Substance Abuse Patient Record Sharing Rule

Fannie Fang Executive Editor Loyola University Chicago School of Law, JD 2017    On January 18, 2017, the Department of Health and Human Services (“HHS”) issued a final rule to update and improve the Confidentiality of Alcohol and Drug Abuse Patient Records regulations, known as 42 CFR Part 2 (“Part 2”). The purpose of the …
Read more

Advocate Settles with OCR for $5.55 Million, Officially the Highest Single HIPAA Violation Settlement to Date

Fannie Fang Executive Editor Loyola University Chicago School of Law, JD 2017   The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently agreed to a settlement with Advocate Health Care Network (Advocate), the largest health systems in the Chicago area. In the settlement, Advocate agreed to pay a sum of …
Read more

HIPAA Vulnerabilities Highlighted in Oregon Health & Science University Settlement

Logan Parker Privacy Editor Loyola University Chicago School of Law, LL.M in Health Law 2017   In 2013, Oregon Health & Science University (“OHSU”), Oregon’s only academic health center, reported numerous breaches of unsecured electronic protected health information (“ePHI”), including two breaches within the span of five months. This led to the Office of Civil …
Read more