Tag Archives: Health Insurance Portability and Accountability Act (HIPAA)

New ACA FAQs – Special Enrollment, Women’s Preventive Care and a Cure for the HRA that Ails You (If You’re Small Enough)

In the latest round of FAQs on ACA implementation (now up to 35 if you’re keeping track), the DOL, HHS and Treasury Department addressed questions regarding HIPAA special enrollment rights, ACA coverage for preventive services, and HRA-like arrangements under the […]

Posted in Health Care Reform, Legal Updates | Tagged , , , , , , | Leave a comment

Clouds, With A Nearly 100% Chance of a Business Associate Agreement

HHS recently posted guidance on its website addressing HIPAA’s approach to cloud computing.  Basically, any time a cloud service provider has electronic protected health information (ePHI), it’s a business associate.  This is true even if the cloud provider only stores […]

Posted in Health Plans, Legal Updates, Plan Administration and Compliance | Tagged , , , | Leave a comment

EEOC Takes Aim at Erroneous Application of ADA “Safe Harbor” to Wellness Programs

In its preamble to the final regulations under the Americans with Disabilities Act (“ADA”) published May 17, 2016, which will be the topic of an upcoming blog post, the Equal Employment Opportunity Commission (“EEOC”) once again reiterated its disagreement with […]

Posted in Health Plans, Legal Updates, Plan Administration and Compliance | Tagged , , , , | Leave a comment

Have You Checked Your SPAM Folder Recently?

Nearly two years after the Office of Civil Rights (“OCR”) first announced its preparation for another round of HIPAA audits, Phase II of OCR’s HIPAA audit program is finally underway. On March 21, OCR began emailing various types of entities […]

Posted in Health Plans, Plan Administration and Compliance | Tagged , , | Leave a comment

The Anthem Breach – What Next?

The facts surrounding the Anthem breach continue to evolve as does Anthem’s handling of the situation. Based on the current status of the investigation, and Anthem’s current reactions to the incident, there are steps which group health plan sponsors should […]

Posted in Health Plans, Welfare Plans | Tagged , , , | Leave a comment

Anthem Data Breach Implications for Employers

As has now been widely reported, Anthem, Inc. was the unfortunate target of a cyber-attack potentially impacting 80 million current and former customers. Some reports have indicated that the HIPAA breach notification rules will not apply to this breach. However, […]

Posted in Health Plans, Plan Administration and Compliance, Welfare Plans | Tagged , , , | Leave a comment

Act Now to Obtain a Controlling Health Plan HPID

In light of the numerous unresolved issues surrounding the process for plan sponsors to obtain a health plan identifier (“HPID”) for their  self-funded health plan, we suggested in an earlier post that plan sponsors consider delaying the application process in […]

Posted in Health Plans, Legal Updates, Plan Administration and Compliance | Tagged , , | Leave a comment

Check it Out and Check it Off: 2015 Group Health Plan Checklist

With 2015 just around the corner, certain mandates under the Patient Protection and Affordable Care Act, as amended (“ACA”) are about to become effective. Health plans also have several existing enrollment and annual notice requirements. Below is a checklist of […]

Posted in COBRA, Health Care Reform, Health Plans, Legal Updates, Plan Administration and Compliance, Welfare Plans | Tagged , , , , , , , , , , , , , , | Leave a comment

HHS Guidance Recognizes HIPAA Privacy Rights of Same-Sex Spouses and Dependents

On September 17th, the Department of Health and Human Services Office for Civil Rights (“HHS”) issued guidance to assist covered entities and business associates in complying with the privacy requirements under the Health Insurance Portability and Accountability Act of 1996 […]

Posted in Health Plans, Legal Updates, Plan Administration and Compliance, Welfare Plans | Tagged , , | Leave a comment

HIPAA Audits Are Coming (Again) – Are You Ready?

The Office of Civil Rights (“OCR”) of the U.S. Department of Health and Human Services (“HHS”) is required to conduct periodic audits of compliance with the Privacy, Security and Breach Notification Rules under the Health Insurance Portability and Accountability Act […]

Posted in Health Plans, Plan Administration and Compliance | Tagged , , , | Leave a comment