Rite Aid Agrees to Pay $1 Million to Settle HIPAA Privacy Case

See the companion press release from the FTC in a previous post. Rite Aid Corporation and its 40 affiliated entities (RAC) have agreed to pay $1 million to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule, the U.S. Department of Health and Human Services (HHS) announced today. [...]

Rite Aid Settles FTC Charges That It Failed to Protect Medical and Financial Privacy of Customers and Employees

The following is the FTC’s press release. In the next post, I’ll publish HHS’s press release on their settlement with Rite Aid. Rite Aid Corporation has agreed to settle Federal Trade Commission charges that it failed to protect the sensitive financial and medical information of its customers and employees, in violation of federal law. In [...]

Consumer Watchdog Asks HHS to Repeal Rule Allowing Health Care Providers to Decide When Notification of Breached Electronic Medical Records is Necessary

Consumer Watchdog today called on the Health and Human Services Department to repeal a rule that allows health care providers and insurers to decide whether consumers must be notified when the security of their electronic confidential health information has been breached. In a letter to HHS Secretary Kathleen Sebelius the nonprofit, nonpartisan consumer advocacy group [...]

Lawmakers: lower bar for health IT data breach notification

Roy Mark reports: Two key chairmen of U.S. House committees Oct. 1 urged HHS (Health and Human Services) Secretary Kathleen Sebelius to revise or appeal the agency’s controversial “harm standard” that would trigger a personal health record data breach notification. Under the current rules, companies that secure health information using encryption or destruction, no breach [...]

Next Page »