HIPAA

Utilizing its extensive experience with health care facility operations and government enforcement, the Health Law Center guides clients through a pragmatic and operational approach to complying with HIPAA’s privacy, security, access, and breach notification rules.

HIPAA

Utilizing its extensive experience with health care facility operations and government enforcement, the Health Law Center guides clients through a pragmatic and operational approach to complying with HIPAA’s privacy, security, access, and breach notification rules.

Avoid the Costly Civil and Criminal Penalties

Our team assists entities with evaluating, developing and implementing physical, administrative, technical and security policies and procedures to protect patient information from unauthorized access, use, and disclosure. We understand the complicated federal and state standards that apply to patient privacy rights, and help entities and business associates avoid the costly civil and criminal penalties that may be assessed for HIPAA non-compliance.

The Health Law Center offers specialized guidance in the following areas:

  • Promoting Internal Compliance: Implementing and evaluating HIPAA compliance plans, policies and procedures, Notice of Privacy Practices, developing the training and education modules necessary to ensure that staff members understand their role in protecting patient privacy, and documenting and auditing compliance measures;

  • Fostering Compliant Relationships: Guiding relationships between covered entities, vendors, and other service providers (business associates) by providing day-to-day advice, business associate agreements, and defending patient complaints that can stem from such relationships;

  • Responding to Suspected Breaches and Complaints: Assessing whether a breach has occurred, navigating the breach notification rules, and defending entities under governmental investigations, as well as private causes of action for alleged privacy violations.

Expert Counsel to Safeguard Entities Amid Shifting Patient Privacy Rules

HIPAA breaches can have serious consequences for covered entities and their business associates, including civil fines and penalties, as well as criminal prosecution in some cases. In addition, HIPAA breaches can damage the reputation of the covered entity or business associate and may lead to a loss of trust from patients. We have often found that events that providers initially believe are likely breaches of HIPAA are either not an actual breach or the impact of the breach can be minimized. The key, however, is to address the potential breach immediately and to consult with experienced legal counsel.

The Health Law Center is always available to answer questions regarding the day-to-day application of the privacy and security rules, from the general uses and disclosures of protected health information to responding to requests for accountings and authorization forms to assessing and assisting with breaches. Our team uses a multidisciplinary approach to address patient privacy concerns and considers the ways in which other federal and state regulations may be impacted. The Health Law Center’s experienced counsel are available to address the continuously evolving patient privacy regulations and protect entities from unintended violations.

*HIPAA refers to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and the Health Information Technology for Economic and Clinic Health Act (“HITECH”), as well as other state and federal privacy regulations.