New HIPAA Privacy Rule Guidance

Client Alert | less than 1 min read | 12.04.02

The Department of Health and Human Services' Office of Civil Rights (OCR) has released a 100+ page guidance document on the HIPAA Privacy Rule. The guidance document discusses a broad array of topics in a Q&A format. OCR is the agency responsible for enforcing the Privacy Rule, so this guidance provides useful insight about the government's approach to some of the Privacy Rule's "hot topics". For example, OCR states that physicians with hospital staff privileges need not enter into business associate contracts with the hospital, because joint physician-hospital activities fall under the definition of "organized health care arrangement".

Insights

Client Alert | 6 min read | 07.10.25

Is there a Role Anymore for Supplemental Environmental Projects in Environmental Enforcement Settlements?

Supplemental Environmental Projects (SEPs) are voluntary, environmental or public health projects that parties subject to environmental enforcement proceedings can propose as part of an administrative, civil, or criminal settlement. SEPs are unique and used specifically in environmental enforcement cases in part because (1) many environmental law statutes do not require a showing of harm to prove a violation; thus, redressing harm, outside of equitable relief, is not usually statutorily required; and (2) pollution is a public harm that is hard to redress, both individually and collectively....

Client Alert | 5 min read | 07.10.25
Litigation Funding Waterfalls Are Compliant Post-PACCAR (UK)
Client Alert | 2 min read | 07.09.25
New York Department of Health Issues “Urgent” Cybersecurity Warning to New York Health Care Providers Following U.S. Military Action in Iran
Client Alert | 9 min read | 07.09.25
The New EU “Pharma Package”: Regulatory data protection – A comparison of Commission/Parliament/Council positions

View All Insights