New HIPAA Privacy Rule Guidance

Client Alert | less than 1 min read | 12.04.02

The Department of Health and Human Services' Office of Civil Rights (OCR) has released a 100+ page guidance document on the HIPAA Privacy Rule. The guidance document discusses a broad array of topics in a Q&A format. OCR is the agency responsible for enforcing the Privacy Rule, so this guidance provides useful insight about the government's approach to some of the Privacy Rule's "hot topics". For example, OCR states that physicians with hospital staff privileges need not enter into business associate contracts with the hospital, because joint physician-hospital activities fall under the definition of "organized health care arrangement".

Insights

Client Alert | 11 min read | 12.01.25

EU AI Act, GDPR, and Digital Laws Changes Proposed

Major changes have been proposed to EU AI, data and wider digital laws. On 19th November 2025, the European Union Commission issued its much anticipated Digital Omnibus Regulation Proposal, (the “Digital Omnibus”) and also its Digital Omnibus on AI Regulation Proposal, (the “AI Omnibus”). The mooted changes potentially impact the “Brussels effect” seen post GDPR and add potential complexities to the compliance efforts of businesses....

Client Alert | 5 min read | 12.01.25
FRCP 16.1 Now in Play for MDLs—Game Changer or Not?
Client Alert | 6 min read | 11.26.25
From ‘Second’ to ‘First:’ Federal Circuit Tackles Obvious Claim Errors
Client Alert | 5 min read | 11.26.25
CMS Appeals Humana v. Becerra

View All Insights