Pittsburg, PA

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
One PPG Place, Suite 1500
Pittsburgh, PA 15222
(412) 566-1212
(412) 594-5619
Directions to Pittsburgh

Harrisburg, PA

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
300 Corporate Center Drive, Suite 200
Camp Hill, PA 17011
(717) 234-4121
(717) 232-6802
Directions to Harrisburg

New York, NY

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
250 Park Avenue, Suite 1508, 7th Floor
New York, NY 10171
(212) 739-7910
(212) 739-9607
Directions to New York

Foster City, CA

Tucker Arensberg, P.C.
Tucker Arensberg, P.C.
1098 Foster City Boulevard, Suite 106 #700
Foster City, California 94404
(650)208-2701
Directions to Foster City

Widget Title

  • People
  • Practice Areas
  • News + Insights
    • News
    • Articles
    • Speaking
  • Office Locations
    • Pittsburgh
    • Harrisburg
    • New York
    • Foster City
  • About the Firm
    • Overview
    • Careers
    • Diversity
    • Women@Tucker
    • Affiliations
    • Pro Bono & Community

Title

  • Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar

Tucker Arensberg, P.C.Tucker Arensberg, P.C.

Attorneys in Pittsburgh, Harrisburg, New York City

  • People
  • Practice Areas
  • News + Insights
  • About Our Firm
  • COVID 19: Answers to Business Challenges
ShareBookmarkPDF

HIPAA Settlement Illustrates the Importance of Compliance Due Diligence

News May 31, 2019

In any Healthcare M&A transaction, performing thorough due diligence is important.  Depending on the nature of the business, this due diligence often includes an assessment of the seller’s compliance with the Health Insurance Portability and Accountability Act (HIPAA) and its rules and regulations.  The Office for Civil Rights in the US Department of Health and Human Services (OCR) recently announced a Three Million Dollar settlement with a diagnostic medical imaging company related to potential violations of the HIPAA Security and Breach Notification Rules.  This settlement arose out of an FTP server which allowed access to protected health information visible on the internet.  OCR noted in its press release that notifications to individuals affected by the breach were untimely, an accurate and thorough risk analysis was not conducted, and that business associate agreements were not in place with vendors.  For those readers less familiar with prior settlements reached for alleged violations of HIPAA, the lack of a risk analysis and appropriate business associate agreements are common themes seen in settlements and therefore should be appropriately considered in conducting transactional due diligence.  For additional detail, please review the Resolution Agreement and Corrective Action Plan.

For additional information contact Paul Welk.

Primary Sidebar

HIPAA Settlement Illustrates the Importance of Compliance Due Diligence

Related

People

  • Paul J. Welk

Practice Areas

  • Healthcare
© 2023 All Rights Reserved|Tucker Arensberg, P.C.|Log in|Powered by Content Pilot
  • Sitemap
  • Disclaimer
  • Privacy Policy