In a recent interview with an official from the federal Office of Civil Rights (OCR), which enforces HIPAA privacy and security rules, three emerging areas of concern were identified for covered entities. 

Hacking and ransomware continue to be a significant problem for the health-care sectors and covered entities must develop and maintain an incident response plan to deal with these attacks. 

OCR also advised that health-care providers have to be particularly careful when responding to patient complaints on online platforms, if they respond at all. These responses could result in the wrongful disclosure of protected health information of their patients, resulting in significant OCR enforcement actions.  

Finally, HIPAA-covered entities must exercise caution when employing website tracking technologies particularly around business associates agreements and obtaining patient consent.  

Reference

Lewis J. (2023) OCR Official Speaks About Compliance Concerns for HIPAA-Covered Entities and Business Associates JDSUPRA (accessed August 21, 2023).

Share this

Related Posts

EHDI Program Eliminated

Speak Up Today: Modernize Medicare Payment Policy

Audiologists Advocate for Fair Use of “Doctor” Title in Florida

Recent Posts

Air Pollution from Chemical Industry / shutterstock.com

Industrial Air Pollution and Newborn Hearing Screening Failure

The connection between air pollution and hearing loss has been established for over a decade, with most research focusing on adults. Studies have also shown that…

Read More
The White House from the sky

EHDI Program Eliminated

On April 1, President Trump’s administration eliminated the entire branch of the Early Hearing Detection and Intervention (EHDI) program that works with states to analyze…

Read More
Hand holding megaphone with a blue background

Speak Up Today: Modernize Medicare Payment Policy

Congress is preparing to take action on a budget reconciliation package the week of May 5, and now is a critical time for the audiology…

Read More