Tag Archives: regulatory

Texas Attorney General Issues Consumer Alert Warning Texans of Potential Scams Following Nationwide CrowdStrike Outage

FOR IMMEDIATE RELEASEJuly 19, 2024www.texasattorneygeneral.govPRESS OFFICE: (512) 463-2050Communications@oag.texas.govAttorney General Ken Paxton Issues Consumer Alert Warning Texans of Potential Scams Following Nationwide CrowdStrike Outage   AUSTIN – Texas Attorney General Ken Paxton warned Texans of potential scams following the widespread CrowdStrike service outage.  Texans should be aware that bad actors can use cybersecurity incidents to take advantage …

Continue reading “Texas Attorney General Issues Consumer Alert Warning Texans of Potential Scams Following Nationwide CrowdStrike Outage”

OCR Settles HIPAA Security Rule Enforcement Action with Heritage Valley Health System Stemming from Ransomware Attack

On July 2, 2024, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement with Heritage Valley Health System (Heritage Valley), a healthcare provider operating in Pennsylvania, Ohio, and West Virginia. This is the OCR’s third ransomware settlement and is based on allegations of potential violations of the Health …

Continue reading “OCR Settles HIPAA Security Rule Enforcement Action with Heritage Valley Health System Stemming from Ransomware Attack”

Counseling Clients on Managing the Risks of Artificial Intelligence – Texas Bar Journal

I would like to say a big ole Texas-sized “Thank You” to the Texas Bar Journal for publishing Legal Reasoning: Counseling Clients on Managing the Risks of Artificial Intelligence, in the May 2024 issue of the Journal. I wrote this article along with my colleague Kristen Petry, whose work was invaluable in the preparation of …

Continue reading “Counseling Clients on Managing the Risks of Artificial Intelligence – Texas Bar Journal”

Neural Privacy is Where It’s At — Brain Scanning Technology is Causing States to Look at Protecting the Privacy of Our Thoughts

UPDATES 2024.03.15 Neuralink is now being used to play chess! https://www.youtube.com/watch?v=LfwzfP8cp3A This morning I read an article about how brain scanning technology is causing Colorado and Minnesota to propose legislation that is aimed at establishing rights and protections for information collected from our thoughts through the neural signals that can be scanned and collected from …

Continue reading “Neural Privacy is Where It’s At — Brain Scanning Technology is Causing States to Look at Protecting the Privacy of Our Thoughts”

HHS Releases HPH Sector Cybersecurity Framework Implementation Guide to Help Healthcare Organizations Leverage NIST Cybersecurity Framework

On March 8, 2023, the U.S. Department of Health and Human Services (HHS) released its HPH Sector Cybersecurity Framework Implementation Guide (the Guide) to help healthcare organizations leverage the NIST Cybersecurity Framework. This Guide is not only a must-read for all healthcare “covered entities,” especially small and midsize organizations, but it is excellent advice for …

Continue reading “HHS Releases HPH Sector Cybersecurity Framework Implementation Guide to Help Healthcare Organizations Leverage NIST Cybersecurity Framework”

The White House Cybersecurity Plan – the Devil is in the Details

“The devil is in the details” — that about sums up my take on the White House Cybersecurity Plan. Many thanks to Lily Newman for including this and some other points from our discussion in her Wired article The High-Stakes Blame Game in the White House Cybersecurity Plan. I appreciate that the Administration is talking …

Continue reading “The White House Cybersecurity Plan – the Devil is in the Details”

Dental Practice Responses to Online Reviews Cost $23,000 Settlement with OCR for Impermissible Disclosure of PHI

On December 14, 2022, the U.S. Department of Health and Human Services Office of Civil Rights published a notice of a settlement with a dental practice over disclosures of patients’ protected health information over social media. Here is the full version reproduced below: Date: Wed, 14 Dec 2022Subject: HHS Civil Rights Office Enters Settlement with …

Continue reading “Dental Practice Responses to Online Reviews Cost $23,000 Settlement with OCR for Impermissible Disclosure of PHI”

OCR Releases Video Guidance on Recognized Security Practices for National Cybersecurity Awareness Month

On October 31, 2022, the U.S. Department of Health and Human Services Office of Civil Rights provided guidance titled OCR Releases New Recognized Security Practices Video. This guidance is not only a must-read for all healthcare “covered entities,” especially small and midsize organizations, but it is excellent advice for all organizations — healthcare and non-healthcare …

Continue reading “OCR Releases Video Guidance on Recognized Security Practices for National Cybersecurity Awareness Month”

OCR Guidance on HIPAA Security Rule Security Incident Procedures for National Cybersecurity Awareness Month

On October 25, 2022, the U.S. Department of Health and Human Services Office of Civil Rights in its October 2022 OCR Cybersecurity Newsletter provided guidance titled HIPAA Security Rule Security Incident Procedures. This guidance is not only a must-read for all healthcare “covered entities,” especially small and midsize organizations, but it is excellent advice for …

Continue reading “OCR Guidance on HIPAA Security Rule Security Incident Procedures for National Cybersecurity Awareness Month”

The Home Depot / State Attorneys General Settlement – My 1st and 2nd Thoughts

The Attorneys General of 46 states reached a $17.5 million-dollar settlement with The Home Depot, which was announced on November 24, 2020. Texas Attorney General Ken Paxton announced that this settlement was led by the Connecticut, Illinois, and Texas AGs and Texas will collect $1,777,440.00. I will have more to say about this settlement in …

Continue reading “The Home Depot / State Attorneys General Settlement – My 1st and 2nd Thoughts”