Lexology March 19, 2024
Holland & Knight LLP

Highlights

  • The U.S. Department of Health and Human Services Office for Civil Rights (OCR), which enforces the Health Insurance Portability and Accountability Act (HIPAA), has issued an update to its prior guidance on the uses of tracking technologies by healthcare companies.
  • Clarification by OCR that the purpose for a person’s website visit determines whether information is protected health information provides cold comfort to healthcare companies that have no process for divining the website visitor’s intent.
  • OCR has doubled down on enforcement by prioritizing compliance with the HIPAA Security Rule in its tracking technology investigations.

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) issued updated guidance on March 18, 2024, regarding the use of...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, Health System / Hospital, HHS, HIPAA, Provider
Related Articles:
Addressing The HIPAA Blind Spot For Crisis Pregnancy Centers
6 Important Takeaways for HIPAA Covered Entities and Business Associates from 2024 NIST HHS OCR Conference
HHS settles 2 ransomware investigations as attacks rise
Safeguarding Health Information: Takeaways from HHS and NIST 2024 HIPAA Security Conference
White House OMB is reviewing proposed cybersecurity updates to HIPAA

Share This Article