Blog: Healthcare Lawyers, Attorneys, Consultants, Firm

Legal Risks of Sharing Patient Photos in Dermatology & Cosmetic Surgery

Legal Risks of Sharing Patient Photos in Dermatology & Cosmetic Surgery

Testimonials from real patients are some of the most compelling marketing tools available. For that reason, and because of the ubiquity with which potential patients ask about your results, it is common for your success stories to adorn your dermatology or cosmetic surgery practice’s website. Powerful before-and-after photos of a dermatological or aesthetic transformation build...

read more

What U.S. Healthcare Providers Need to Know About GDPR

What U.S. Healthcare Providers Need to Know About GDPR

Over the past few months, you probably noticed the deluge of emails from major companies informing you of changes to their online privacy policies. This was largely in response to the European Union’s (EU) adoption of its new General Data Protection Regulation (GDPR), which took effect on May 25, 2018. What is GDPR? Does it...

read more

Failure to notify patients of privacy breach: Illinois hospital settles for $475k

Failure to notify patients of privacy breach: Illinois hospital settles for $475k

The U.S. Department of Health and Human Services, Office for Civil Rights, settled with a healthcare system for its untimely reporting of a breach of its unsecured, private health information. Presence Health has agreed to pay $475,000 and implement a corrective action...

read more

Life insurance company settles HIPAA breach for $2,200,000​​​​​​​

Life insurance company settles HIPAA breach for $2,200,000​​​​​​​

The U.S. Department of Health and Human Services announced a HIPAA settlement after MAPFRE Life Insurance Company of Puerto Rico disclosed unsecured electronic protected health information...

read more

Dallas hospital pays out $3.2 million for HIPAA breach

Dallas hospital pays out $3.2 million for HIPAA breach

Children’s Medical Center had failed to implement procedures that were compliant with HIPAA.  It did not implement risk management plans, nor did it use encryption on all of its laptops, workstations, mobile devices, or removable media...

read more