For years, health care providers have worked hard to comply with the HIPAA Security Rule that requires implementation of administrative, technical, and physical safeguards to secure protected health information (PHI). This recent study by Jorge Rey and Tyler Quinn at Kaufman, Rossin & Co. analyzes data breaches reported to the U.S. Department of Health and
August 2012
Data Privacy – Is Your Business Ready For HB 300?
On September 1, 2012, a new law will go into effect in Texas that imposes new requirements on organizations that maintain protected heath information (PHI). The new legislation, HB 300, imposes even tighter standards than required by the federal Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and…
Why Should Companies Care About Identity Theft?
Criminals are increasingly stealing tax refunds by obtaining personally identifiable information about individuals and using that information to file fraudulent tax refunds. The IRS identified $6.5 billion in identity-related tax refund fraud last year. CNN Presents recently investigated the crime and, as Randi Kaye explained in this news report, it is “one of the biggest,…
Data Security – Is Corporate America Finally Getting The Message?
A recent survey of corporate general counsel and directors by Corporate Board Member and FTI Consulting, Inc., provides some eye-opening findings about the importance of data security to U.S. companies and the ability of those companies to respond to a data breach.
On the one hand, the survey of approximately 13,400 corporate directors and…
The FTC Fines Google $22.5 Million – Why Should Companies Care?
Today, the Federal Trade Commission levied a $22.5 million penalty against Google, the largest civil penalty by the FTC against a single defendant. Here is a copy of the Stipulated Order entered into between the FTC and Google. The penalty stems from an FTC Complaint alleging that Google violated “privacy promises” it agrees to…