On July 1, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced that Heritage Valley Health System, a provider in Pennsylvania, Ohio and West Virginia, agreed to pay $950,000 to resolve potential violations of the HIPAA Security Rule. Heritage Valley’s alleged violations included failure to conduct a risk analysis to determine potential risks and vulnerabilities to electronic protected health information (ePHI), failure to implement a contingency plan to…
By: Rivkin Radler LLP
By: Rivkin Radler LLP
