In a recent interview with an official from the federal Office of Civil Rights (OCR), which enforces HIPAA privacy and security rules, three emerging areas of concern were identified for covered entities. 

Hacking and ransomware continue to be a significant problem for the health-care sectors and covered entities must develop and maintain an incident response plan to deal with these attacks. 

OCR also advised that health-care providers have to be particularly careful when responding to patient complaints on online platforms, if they respond at all. These responses could result in the wrongful disclosure of protected health information of their patients, resulting in significant OCR enforcement actions.  

Finally, HIPAA-covered entities must exercise caution when employing website tracking technologies particularly around business associates agreements and obtaining patient consent.  

Reference

Lewis J. (2023) OCR Official Speaks About Compliance Concerns for HIPAA-Covered Entities and Business Associates JDSUPRA (accessed August 21, 2023).

Share this

Related Posts

Senate Appropriations Committee Advances FY 2026 LHHS Bill

Student Audiology Leaders Take to Capitol Hill to Champion MAAIA

U.S. Senate Confirms Susan Monarez as CDC Director

Recent Posts

small green plant is growing in the dirt. The plant is small and has a lot of leaves

Plants Can Scream? And Can Animals Hear Them? 

Two years ago, a team of scientists from Tel Aviv University were the first to show that plants scream when they are distressed or unhealthy…

Read More

New School Year, New Opportunities

I was walking through Target with my husband last week when suddenly he groaned and said, “oh I hated to see that when I was…

Read More

Pediatric Audiology Specialty Certification (PASC) Exam Update     

Of the 25 exam candidates who took the Spring 2025 PASC Exam in May, 22 of the 25 passed the exam and are now Board…

Read More