HIPAA Data Breach and Enforcement Issues

Anthem Health, Excellus, Premera, UCLA Health and Medical Informatics Engineering – all hacked in 2015! The protected health information of more than 100 million people was breached. Despite HITECH, despite increased HIPAA enforcement, despite FBI warnings and, most perplexing of all, despite Target and Neiman Marcus, the healthcare industry was woefully unprepared for the cyber onslaught of 2015.

Healthcare providers, health insurers and health plans all have information that hackers and others with no right to such information want and want badly. That information is infinitely more valuable than an easily-changed credit card number. The healthcare industry must take action to protect itself.

In this course, David N. Crapo of Gibbons P.C. discusses: (i) the HIPAA Breach Notification Rule, (ii) the HIPAA Security Rule Risk Analysis, and (iii) developments in HIPAA Enforcement.

Learning Objectives:

I.     Grasp the nature of breaches and how they happen

II.    Understand how to minimize the chance of a breach

III.   Know how HIPAA is enforced directly by governmental entities and indirectly by private parties, as well as the various “sanctions” arising out of HIPAA enforcement