In a recent interview with an official from the federal Office of Civil Rights (OCR), which enforces HIPAA privacy and security rules, three emerging areas of concern were identified for covered entities. 

Hacking and ransomware continue to be a significant problem for the health-care sectors and covered entities must develop and maintain an incident response plan to deal with these attacks. 

OCR also advised that health-care providers have to be particularly careful when responding to patient complaints on online platforms, if they respond at all. These responses could result in the wrongful disclosure of protected health information of their patients, resulting in significant OCR enforcement actions.  

Finally, HIPAA-covered entities must exercise caution when employing website tracking technologies particularly around business associates agreements and obtaining patient consent.  

Reference

Lewis J. (2023) OCR Official Speaks About Compliance Concerns for HIPAA-Covered Entities and Business Associates JDSUPRA (accessed August 21, 2023).

Share this

Related Posts

Amplifying Audiology’s Voice: Advocacy Ambassador Program

Two Fronts, One Goal: Securing Federal Loan Access for Audiology Students

Government Shutdown Ends with Key Wins for Hearing Health

Recent Posts

Rock the PAC: An Evening of Music, Networking, and Advocacy

This content is an exclusive benefit for American Academy of Audiology members. If you’re a member, log in and you’ll get immediate access. Member Login…

Read More

Amplifying Audiology’s Voice: Advocacy Ambassador Program

The Academy is launching the Advocacy Ambassador Program, a grassroots advocacy program to strengthen audiology’s voice nationwide. The program will debut at the AAA Annual…

Read More

Cut Through the Noise

Let’s face it…there is a lot going on at AAA 2026, so it can be overwhelming to determine what works best for you and meets your needs. And so,…

Read More