Hospitals, health systems, physicians and other health care providers and their business associates handle volumes of patient medical information and must do so in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and state privacy laws.
A major goal of the HIPAA Privacy Rule is to assure that individuals’ health information is properly secure while allowing the flow of health information needed to provide and promote high quality health care and to protect the public’s health and well being.
These are complex regulations with many requirements, and there is an increased focus on enforcement. Failure to comply with HIPAA can be disruptive and costly resulting in regulatory action, fines, lawsuits and a damaged reputation.
Our attorneys have been counseling clients on HIPAA Privacy and Security Rules since the law's inception more than a decade ago with compliance programs, policies and training so that they have the capacity to meet the stringent standards.
We assist clients with developing data security breach notification procedures before events occur. If there is a breach, we help clients implement their plans and take action in a decisive, responsive manner that is in compliance with the law.