Lexology March 20, 2024
Hogan Lovells

The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) updated its guidance concerning compliance obligations for HIPAA covered entities and business associates using online tracking technologies. While revisions purport to provide some clarity on use of technologies on unauthenticated webpages, business associate relationships with vendors, and OCR’s enforcement priorities, the bigger tracker questions remain unchanged.

OCR recently updated guidance directed at HIPAA-regulated entities that use online tracking technologies, reminding those entities that use of such technology must comply with their obligations under the HIPAA Privacy, Security, and Breach Notification Rules (HIPAA Rules), providing clarification about enforcement priorities, adding examples of uses of these technologies, and narrowing some of the previously broad language about...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, Health System / Hospital, HHS, HIPAA, Provider
Related Articles:
HIPAA Security Rule: Big Changes May Be Coming for Covered Entities & Business Associates
Perceived industry compliance failures prompt stringent proposed HIPAA Security Rule
Proposed Changes to the HIPAA Security Rule Will Have a Significant Impact on the Health Care Sector
HHS’ Proposed HIPAA Changes Are a Step in the Right Direction, But Some Providers May Struggle to Comply
Proposed Changes to HIPAA Security Rule

Share This Article