All HHS articles

  • Health records

    Breach costs Premera Blue Cross $6.85M; second-largest HIPAA fine


    Premera Blue Cross has agreed to pay $6.85 million in a settlement with the U.S. Department of Health and Human Services regarding a 2014 data breach that affected the personal and health plan information of over 10.4 million people.

  • Coronavirus fraud

    U.S. regulators boast coordination in addressing coronavirus fraud


    Testimony provided by several agencies before a U.S. Senate Judiciary Committee hearing offers valuable insights for chief compliance and risk officers regarding where coronavirus fraud threats may lurk, especially in the financial services and healthcare sectors.

  • Blog post

    FDA rule for mandatory nutrition labels goes into effect


    The Food and Drug Administration has chosen not to block or further delay the May 7 compliance date for requirements that restaurants, supermarkets, convenience stores, and movie theaters list calorie information on all menus and menu boards.

  • Blog post

    Ellison questions HHS hire from CVS Caremark.


    Rep. Keith Ellison (D-Minn.) is asking Department of Health and Human Services Secretary Alex Azar for an explanation of the decision to hire CVS Caremark Vice President Daniel Best to lead the agency’s drug pricing reform effort.

  • Blog post

    President Trump announces new nominees for key posts


    President Donald Trump has announced the nominations of several new agency officials, including a new Comptroller of the Currency and assistant attorney general for the Justice Department.

  • Blog post

    Business associate to pay $650K for HIPAA violation


    The Department of Health and Human Services reached its first-ever enforcement action with a “business associate” of a HIPAA-covered entity. Compliance officers in the healthcare industry looking to minimize risk of future HIPAA violations will want to take a look at the resulting corrective action plan for lessons learned. Jaclyn ...

  • Article

    Compliance lessons in the healthcare sector


    When enforcement actions against healthcare or life sciences companies arise, many choose to settle their cases prior to litigation, often resulting in a corporate integrity agreement with the Department of Health and Human Services Office of Inspector General. By carefully scrutinizing these agreements, compliance and audit teams in the healthcare ...

  • Article

    Managing Cyber-Risk in the Healthcare Industry


    Image: Recent high-profile data breaches at several major healthcare providers have jolted the industry, which is trying to piece together better ways to manage the risks. “As opposed to an organization trying to invest more money in firewalls or other types of technical solutions to protect against an intrusion, at ...