In September, 2015, OCR and HHS issued a press release announcing a Resolution Agreement with the Cancer Care Group, P.C., which included entry into the agreement, the adoption of a robust compliance plan, and the payment of a $750,000 penalty. The settlement arose out of an incident involving the theft of an employee laptop containing … Continue Reading
Accretive Health recently agreed to settle a Federal Trade Commission (FTC) complaint that stems from a July, 2011 incident in which an Accretive employee’s laptop was stolen from his car. As a medical billing and revenue management services provider, Accretive grants its employees access to “sensitive personal health information” including “patient names, dates of birth, … Continue Reading
This is simply a reminder that the Office of Civil Rights (OCR) pilot audit program to access the privacy and security compliance of covered entities will commence November 2011 and conclude by December 2012. The attached link provides details about the program. http://www.hhs.gov/ocr/privacy/hipaa/enforcement/audit/index.html … Continue Reading