Category: Privacy

HHS Task Group Releases Cybersecurity Guidelines for the Health Care Industry

Share

Health care is one of the most complex and socially impactful areas of digitalization. Ensuring cybersecurity of health care operations, therefore, is of paramount importance – because potential vulnerabilities may lead not only to financial or technical exposures, but to lapses in life-or-death situations for patients.

To assist practitioners with education and guidelines, and in pursuance of Cybersecurity Act of 2015 (Public Law 114-113), Section 405(d), the Department of Health and Human Services created a “405(d) Task Group” in May 2017, involving, more than 150 health care and cybersecurity experts. The result of their collaborative work became a voluntary guideline entitled “Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients,” which was released at the end of 2018.

Continue reading “HHS Task Group Releases Cybersecurity Guidelines for the Health Care Industry”

House Committee Staff Report Finds Equifax Data Breach Entirely Preventable, Provides Recommendations for Consumer Reporting Agencies

Share

After a 14-month investigation into the 2017 Equifax data breach, which was one the largest in U.S. history, the House Oversight and Government Reform Committee released a report in December.

Continue reading “House Committee Staff Report Finds Equifax Data Breach Entirely Preventable, Provides Recommendations for Consumer Reporting Agencies”

EU-US Privacy Shield Second Review: Improvements Shown, but More to be Done

Share

The EU Commission published its second annual review of the functioning of the EU-US Privacy Shield, which focused on the commercial issues, human resources and data automated individual decision-making and developments in the U.S. legal framework.  This report follows the same general structure as the report on the first annual EU-US Privacy Shield review that we reported on last year.

Continue reading “EU-US Privacy Shield Second Review: Improvements Shown, but More to be Done”

California AG to Hold Public Forums on CCPA

Share

The California Attorney General invites interested persons to provide comments on the California Consumer Privacy Act (CCPA) rulemaking at a series of six public forums around the state in January and February 2019. The first forum is slated for January 8 in San Francisco.

Continue reading “California AG to Hold Public Forums on CCPA”

$500,000 Settlement for Failure to Comply with Basic HIPAA Compliance Requirements

Share

Advanced Care Hospitalists PL (ACH) and the Office for Civil Rights of the U.S. Department of Health and Human Services (HHS-OCR) entered into a $500,000 no-fault settlement and two year corrective action plan (CAP) to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA).

Continue reading “$500,000 Settlement for Failure to Comply with Basic HIPAA Compliance Requirements”

CFPB Settles with Savings and Loan Association for Alleged Violations of the FCRA

Share

The Consumer Financial Protection Bureau announced a settlement with State Farm Bank, FSB for alleged violations which involved obtaining and furnishing consumer reports, which in some cases were inaccurate, to Consumer Reporting Agencies. The order finds that State Farm Bank, an Illinois federal savings association with over $10 billion in assets, violated the Fair Credit Reporting Act, the first U.S. Sectorial privacy law, and the Consumer Financial Protection Act in a number of ways.

Continue reading “CFPB Settles with Savings and Loan Association for Alleged Violations of the FCRA”

©2025 Faegre Drinker Biddle & Reath LLP. All Rights Reserved. Attorney Advertising.
Privacy Policy