Compliance Officer Authority and Resource Allocation

Posted on July 24, 2024October 29, 2025 by admin

The Department of Justice (DOJ) uses resource allocation as a key measure when evaluating the effectiveness of compliance programs. Allocating sufficient resources to the compliance function is foundational to any systematic compliance initiative and remains central as regulatory expectations evo...

Complying with HIPAA and Beyond during COVID-19

Posted on April 22, 2020October 29, 2025 by admin

Safeguarding Patient Health Information in an Emergency Situation Even in an emergency situation such as that presented by the COVID-19 pandemic, covered entities must continue to meet their obligations under federal and state laws protecting confidentiality of patient health care information, to...

Proposed Revisions to the SAMHSA Regulations

Posted on September 23, 2019October 29, 2025 by admin

Impact on Communications Between Part 2 and Non-Part 2 Providers Introduction In our ongoing engagement with behavioral health and substance abuse programs, we maintain a vigilant focus on matters relating to patient record confidentiality governed by 42 CFR Part 2, commonly known as the SAMHSA r...

Deconstructing the “HIPAA Bias.”

Posted on May 22, 2019October 30, 2025 by admin

Understanding HIPAA and Its Interaction with State and Federal Confidentiality Laws HIPAA, the body of regulations designed to protect the confidentiality of patient health care information, has been highly effective in creating widespread awareness within health care facilities. Most staff membe...

DOJs New Evaluation of Corporate Compliance Programs – The Essence of Compliance

Posted on May 20, 2019October 30, 2025 by admin

The Criminal Division of the United States Department of Justice (DOJ) revised its Evaluation of Corporate Compliance Programs in April 2019. Initially introduced in 2017, this document provides prosecutors with structured guidance for investigations, charging decisions, and plea negotiations. Th...

Disclosures for Specific Payment or Health Care Operations Purposes (§ 2.33)

Posted on January 31, 2018January 31, 2018 by admin

Part 2 Records – Specific Payment or Health Care Operations Purposes (§ 2.33) Special restrictions apply to health information that is restricted under SAMHSA rules. These rules protect patient information involving substance and alcohol treatment in Federal programs. SAMHSA requirements...

Notice of Restriction on Re-Disclosure SAMHSA Records

Posted on January 31, 2018January 31, 2018 by admin

Prohibition on Re-Disclosure – Changes in New SAMHSA Final Rules (§ 2.32) One of the primary new operative provisions that was created in the 2017 Final Rules is an expanded prohibition against re-disclosure of records that are covered under SAMHSA. Even when a disclosure is permitted, the 201...

Failing to Perform an Electronic Access Risk Analysis Before and Unauthorized Access Occurs

Posted on May 15, 2017 by admin

OCR Settlement Lessons – No Risk Assessment Exposes Provider to Liability Failure to conduct a risk assessment before a hacking incident occurred resulted in a $400,000 settlement between OCR and a Federally Qualified Health Clinic. The FQHC filed a breach report upon learning that its employee...

What Does the HIPPA Phase2 Audit Program Mean for Physicians?

Posted on October 15, 2016February 15, 2017 by admin

HIPAA Audits of Physician Practices – Phase II Audits The HHS Office for Civil Rights (“OCR”) has Officially announced The commencement of its 2016 Phase 2 HIPAA Audit . In Phase 2, OCR Will be reviewing the policies and procedures of covered entities and their business associates. This phase of ...

Physicians Health Lawyers

Category: HIPAA Issues