With apologies to John Donne, ask not for whom the bells tolls, HIPAA business associates, it tolls for thee! While it has been the law for some time that business associates could be held directly liable for breaches, enforcement actions against them have been few and far between. But a sizable settlement announced on September 23, 2020 by the Office for Civil Rights at the U.S.… More
Monthly Archives: September 2020
What are best practices for handling a data security incident? Every phase of a data security incident requires thoughtful and measured action – from discovery, to investigation, to post-investigation compliance. Even planning for an incident before it happens is important to lay the groundwork for the most effective response.