Jun 92015

HHS to solicit comments on methodology for victims of HIPAA violations to receive percentage of civil penalties or settlements

Donielle McCutcheon
,

In May, the Department of Health and Human Services published its Spring 2015 regulatory agenda, which outlines its upcoming rulemaking initiatives.  The agenda describes a number of Office of Civil Rights (OCR) rulemakings that are forthcoming, including OCR’s plan to release an advanced notice of proposed rulemaking that would solicit public comments on establishing a methodology under which an individual who is harmed by a Health Insurance Portability and Accountability Act (HIPAA) offense may receive a percentage of any Civil Money Penalty or monetary settlement collected by the government with respect to the offense.  This is a significant rulemaking, which was required under the Health Information Technology for Economic and Clinical Health Act (HITECH) and is expected to be released in December 2015.  The full regulatory agenda may be accessed here: http://www.reginfo.gov/public/do/eAgendaMain.

Donielle McCutcheon

Chicago

dmccutcheon@sidley.com

You might also like
New FTC Guidance for Mobile Health Apps

Healthcare providers, health plans, and technology companies that use mobile health apps to access, collect, share, use, or maintain information related to an individual’s health should take note of the recently issued Federal Trade Commission (FTC) Mobile Health App Interactive Tool. The purpose of the tool is to help mobile health developers determine the federal regulatory, privacy, and security laws and regulations that may apply to the use of a consumer’s health information, such as information related to diagnosis, treatment, fitness, wellness, or addiction. While the tool should not be considered legal advice and cannot guarantee compliance with legal requirements, it can help healthcare providers, health plans, and technology companies issue-spot to manage risk in this heavily regulated space.

It Is Now More Difficult For International Pharma To Transfer Data Out Of China

China’s new Measures for the Security Assessment of Outbound Data Transfers (the “Measures”) came into force on September 1, 2022. Pharma companies now have until February 28 to work out whether their activities mean they are affected, and to apply for the new type of data security assessment if they need it.

FINRA Issues 2023 Report on Its Examination and Risk Monitoring Program

On January 10, 2023, the Financial Industry Regulatory Authority (FINRA) published its 2023 Report on its Examination and Risk Monitoring Program (the Report).1 The 75-page Report includes four new topic areas for 2023: (1) manipulative trading, (2) fixed income — fair pricing, (3) fractional shares — reporting and order handling, and (4) Regulation SHO.