Two lawsuits filed against UC San Diego Health late last week, allege that a four-month employee email hack that breached the data of nearly 500,000 patients was caused by negligence and other security failings.
Subtle differences in opposing breach reporting bills in Congress, including a version in the National Defense Authorization Act passed Friday by the House, could have major impacts for enterprises and the government itself.
Ongoing threats and health app privacy matters give the appearance that patient access rights are not a high priority for HHS OCR. Former HHS privacy leaders and industry influencers Deven McGraw and Lucia Savage share why access rights are so vital to improving care outcomes and just why providers must prioritize the process.
The Federal Energy Regulatory Commission is asking input on information collection regulations for how energy companies secure bulk electric systems while its CIO speculated earlier this month that regulated energy utilities will likely need to follow recent government actions around implementing zero trust architectures.
The FTC Health Breach Notification Rule was enacted 10 years ago to protect the privacy and security of consumer health data not covered by HIPAA, but it was never enforced. A policy decision enacted on Sept. 15 will change that.
HHS OCR announced it reached an $80,000 settlement with Children's Hospital & Medical Center over potential HIPAA Right of Access failures. It’s the 20th settlement made under its access rights’ initiative.
A recent filing with the U.S. District Court of Northern California consolidates multiple lawsuits filed against Flo Health by its users, alleging the fertility app shares highly sensitive data with third parties like Facebook and Google — in direct contradiction with its privacy practices.