A covered entity refused to comply with an individual’s request for their child’s PHI in violation of the HIPAA Privacy and Security Rules; policies and procedures must be updated to identify methods for calculating reasonable cost-based fees for access requests, the status of requests received must be reported to the HHS every 90 days, and all workforce members must receive training on individuals’ right to PHI access.
Related Posts
“Brazil’s ANPD Initiates Public Consultation: Anonymization, Pseudonymization, and Data Subject Rights in Focus for Data Privacy”
As a data privacy consultant, it’s encouraging to see the Brazilian Data Protection Authority (ANPD) taking proactive steps…
Breaking News for the iGaming Community: Strive Gaming Attains Certification and Provisional Gaming Supplier License in Michigan
Strive Gaming has secured both certification and a provisional gaming supplier license in Michigan, marking a significant milestone…
Turkey’s Entire Population Has Data Leaked
It was discovered that roughly 85 million people’s data (the entire population of Turkey) had their information added…