In a recent interview with an official from the federal Office of Civil Rights (OCR), which enforces HIPAA privacy and security rules, three emerging areas of concern were identified for covered entities. 

Hacking and ransomware continue to be a significant problem for the health-care sectors and covered entities must develop and maintain an incident response plan to deal with these attacks. 

OCR also advised that health-care providers have to be particularly careful when responding to patient complaints on online platforms, if they respond at all. These responses could result in the wrongful disclosure of protected health information of their patients, resulting in significant OCR enforcement actions.  

Finally, HIPAA-covered entities must exercise caution when employing website tracking technologies particularly around business associates agreements and obtaining patient consent.  

Reference

Lewis J. (2023) OCR Official Speaks About Compliance Concerns for HIPAA-Covered Entities and Business Associates JDSUPRA (accessed August 21, 2023).

Share this

Related Posts

Advancing Audiology: SPAN Wraps Up 2025 with Key Updates on CPT Codes 

Audiology and Speech-Language Pathology Interstate Compact Update

Academy Board of Directors Meets with Lawmakers During Government Shutdown

Recent Posts

Got Change?

One of my favorite sayings is “the only constant is change.” As I was reflecting on the growth in the ABA credentials portfolio, it occurred…

Read More
What’s in a Name? (Or What’s After Your Name?)

What’s in a Name? (Or What’s After Your Name?)

As the ABA credential portfolio grows, many audiologists have achieved multiple credentials. So, the question arises, what is the correct way to list degrees and…

Read More
Vestibular Audiology Specialty Certification (VASC) Update

Vestibular Audiology Specialty Certification (VASC) Update

The ABA is pleased to announce the first class of Board Certified in Vestibular Audiology (BC-VA) audiologists! Fifteen of the twenty beta exam candidates passed…

Read More