United States:
Health And Sciences University Signs Resolution Agreement With Government Agency
19 September 2016
by
Daniel J. McLoon
,
Mauricio Paez
,
Jonathon Little
,
Kevin Lyles
,
Todd McClelland
,
Jeff Rabkin
,
Adam Salter
,
Michiru Takahashi
,
Undine Von Diemar
,
Olivier Haas
,
Jörg Hladjk
,
Richard Johnson
,
Anand Varadarajan
and
Nicole Perry
Jones Day
To print this article, all you need is to be registered or login on Mondaq.com.
On July 13, a health and sciences university signed a resolution agreement with the United States
Department of Health and Human Services Office for Civil Rights
("OCR") regarding two data breaches that occurred in
2013. In the first breach, a laptop belonging to the university
with electronically protected health information was stolen. The
second breach involved the unprotected use of "cloud"
storage. The resolution agreement includes a $2.7 million payment
and a plan for corrective action.
The content of this article is intended to provide a general
guide to the subject matter. Specialist advice should be sought
about your specific circumstances.
POPULAR ARTICLES ON: Privacy from United States
State Data Breach Notification Laws
Foley & Lardner
While most state data breach notification statutes contain similar components, there are important differences, meaning a one-size-fits-all approach to notification will not suffice.