Scott Bennett Educates Healthcare Risk Management Readers on Importance of Timely Access Request Responses for HIPAA Compliance

Following the Office for Civil Rights’ (OCR) report to Congress that revealed a 61% increase in HIPAA breaches affecting more than 500 people in 2020, Healthcare Risk Management turned to Scott Bennett for specific actions healthcare organizations should take to avoid complaints surrounding patient access and disclosure requests. Scott encouraged healthcare providers to continuously educate their personnel on the unique requirements and differences between the two types of requests and suggested supplying them with actionable guidance documents to use between trainings. Ensuring every access request is logged and receives a response within 30 days, as HIPAA mandates, will prevent OCR enforcement actions. Scott also recommended healthcare entities conduct a wide-scale security assessment that extends to every piece of hardware and software that touches electronic PHI. A leading...

Read MoreRead More
Kristen Rosati Reviews a Year of Health Law Updates for AHLA’s Annual Meeting

Kristen Rosati Interprets New Arizona Genetic Testing Consumer Protection Law for DataGuidance

Following the effective date of a new Arizona genetic testing law, Kristen Rosati explained how the law protects consumers’ private information provided to direct-to-consumer genetic testing companies for DataGuidance. Asked to comment on the new law, Kristen said it requires companies provide a prominent, public privacy notice about the company’s data practices. Kristen explained the new law also requires four forms of consent to indicate what can be done with customers’ genetic data.  Kristen emphasized the new law has limited impact on health care organizations and clinical laboratories providing treatment and organizations engaged in medical research. Kristen explained: "this is a good development - and one I understand was supported by direct-to-consumer testing companies - because it assures individuals that their most private information will be...

Read MoreRead More
Scott Bennett Helps In Business Readers Prepare for Pending Consumer Privacy Laws

Scott Bennett Helps In Business Readers Prepare for Pending Consumer Privacy Laws

With the passage of several data protection and privacy laws, both domestically and abroad, businesses should prepare for a federal privacy law that may be on the horizon. Writing for In Business, Scott Bennett outlines actions companies should take to assure customers everywhere that their information is secure. Scott says three steps are of paramount importance: Create and/or update privacy policies – Organizations must have an easily accessible policy that outlines how they keep their customers’ information secure, what they do with it and how long it is kept. Template policies are a good place to start, but companies should tailor them according to their practices. Establish data mapping protocols – Data mapping examines all data a company collects, where it is located and what is...

Read MoreRead More
Kristen Rosati Reviews a Year of Health Law Updates for AHLA’s Annual Meeting

Kristen Rosati Discusses Compliance Considerations When Sharing Health Data

Looking to educate health system clients about how they can enable compliant data partnerships between hospitals and companies, healthcare data company OMNY turned to Kristen Rosati to address the changing landscape, legal considerations and opportunities for future innovation. Kristen, one of the nation’s leading HIPAA compliance attorneys, joined OMNY Chief Operating Officer Sunny Grewal for a virtual fireside chat highlighting some of the finer details of HIPAA compliance. The conversation disclosure requirements and a discussion of HIPAA Privacy Rule de-identification methods. She also discussed how healthcare systems can use data for innovation, while remaining compliant with HIPAA and other regulations. OMNY is among the leading healthcare data companies in the nation. Through its work with healthcare facilities and companies, the organization supports data-driven innovation to improve patient...

Read MoreRead More