New HIPAA Privacy Rule Guidance

Client Alert | less than 1 min read | 12.04.02

The Department of Health and Human Services' Office of Civil Rights (OCR) has released a 100+ page guidance document on the HIPAA Privacy Rule. The guidance document discusses a broad array of topics in a Q&A format. OCR is the agency responsible for enforcing the Privacy Rule, so this guidance provides useful insight about the government's approach to some of the Privacy Rule's "hot topics". For example, OCR states that physicians with hospital staff privileges need not enter into business associate contracts with the hospital, because joint physician-hospital activities fall under the definition of "organized health care arrangement".

Insights

Client Alert | 6 min read | 11.19.25

Buying Peace: The Importance of Releasing FCA Liability When Resolving Criminal Allegations of Fraud Against the Government

The facts before the Third Circuit in the recently decided case of Patel v. United States illustrate how parties can put themselves in a bind if they make factual admissions when resolving a criminal case involving fraud on the government while not simultaneously resolving the government’s civil claims under the False Claims Act (FCA) for the same underlying conduct....

Client Alert | 4 min read | 11.18.25
DOJ Announces Major Enforcement Actions Targeting North Korean Remote IT Worker Schemes
Client Alert | 6 min read | 11.18.25
The UK’s Cyber Security & Resilience Bill at a glance
Client Alert | 2 min read | 11.14.25
Defining Claim Terms by Implication: Lexicography Lessons from Aortic Innovations LLC v. Edwards Lifesciences Corporation

View All Insights