ephi

OCR Urges Covered Entities and Business Associates to Use HTTPS

By Linn Foster Freedman on April 13, 2017

Posted in Health Information Privacy, HIPAA and Health Information

New guidance from the Office for Civil Rights (OCR) urges covered entities and business associates to use Secure Hypertext Transport Protocol (HTTPS) to protect communications from vulnerabilities.

According to OCR, the vulnerability can be introduced by the use of products that inspect HTTPS traffic. These products are used to detect malware or unsafe connections, which…

OCR settlement reiterates importance of proactive security rule compliance

By Conor Duffy on September 16, 2015

Posted in Enforcement + Litigation, Health Information Privacy, HIPAA and Health Information

On September 2, 2015, the U.S. Department of Health & Human Services (HHS) announced that Cancer Care Group, P.C. (CCG), a physician practice located in Indiana, agreed to pay $750,000 as part of a settlement to resolve alleged violations of HIPAA’s Security and Privacy Rules.

The HHS Office for Civil Rights (OCR) initiated an investigation…

Data Privacy + Cybersecurity Insider

ephi

OCR Urges Covered Entities and Business Associates to Use HTTPS

OCR settlement reiterates importance of proactive security rule compliance

Topics

Archives