In a recent interview with an official from the federal Office of Civil Rights (OCR), which enforces HIPAA privacy and security rules, three emerging areas of concern were identified for covered entities. 

Hacking and ransomware continue to be a significant problem for the health-care sectors and covered entities must develop and maintain an incident response plan to deal with these attacks. 

OCR also advised that health-care providers have to be particularly careful when responding to patient complaints on online platforms, if they respond at all. These responses could result in the wrongful disclosure of protected health information of their patients, resulting in significant OCR enforcement actions.  

Finally, HIPAA-covered entities must exercise caution when employing website tracking technologies particularly around business associates agreements and obtaining patient consent.  

Reference

Lewis J. (2023) OCR Official Speaks About Compliance Concerns for HIPAA-Covered Entities and Business Associates JDSUPRA (accessed August 21, 2023).

Share this

Related Posts

Protect Audiology Licensure in Utah

Government Re-Opening: What It Means for Hearing Health

Advancing Audiology: SPAN Wraps Up 2025 with Key Updates on CPT Codes 

Recent Posts

Protect Audiology Licensure in Utah

Protect Audiology Licensure in Utah

The Utah Office of Professional Licensure Review (OPLR) has recommended a drastic change that would eliminate professional licensure for audiologists and speech-language pathologists and replace…

Read More
Government Reopens: What It Means for Hearing Health

Government Re-Opening: What It Means for Hearing Health

After weeks of uncertainty, Congress has reached an agreement and is expected to vote later today on a continuing resolution to reopen the federal government…

Read More
Submit Your Poster Now

Submit Your Poster Now

Join us in curating an annual convention program that amplifies the value of the profession. The AAA 2026 Program Committee is proud to invite clinicians,…

Read More