Pulse November 10, 2023
Matt Fisher

On Halloween 2023, the Office for Civil Rights dropped news of what could be seen as a treat to OCR, but a trick on the impacted entity. The announcement was the most recent settlement of a HIPAA issue, which was another ransomware based incident. As always, it is helpful to summarize the situation and then see what lessons might be drawn from the circumstances.

The Factual Setup

The settlement was between OCR and Doctors’ Management Services (“DMS”). DMS is a business associate as it provides practice management support and solutions for practices. OCR initiated its investigation into DMS after the voluntary and compliant submission of a data breach notice by DMS on April 22, 2019. In its notice to OCR,...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, HIPAA, Provider
Related Articles:
Addressing The HIPAA Blind Spot For Crisis Pregnancy Centers
6 Important Takeaways for HIPAA Covered Entities and Business Associates from 2024 NIST HHS OCR Conference
HHS settles 2 ransomware investigations as attacks rise
Safeguarding Health Information: Takeaways from HHS and NIST 2024 HIPAA Security Conference
White House OMB is reviewing proposed cybersecurity updates to HIPAA

Share This Article