The Department of Health & Human Services (HHS) released a concept paper outlining its strategy for improving cybersecurity infrastructure within the healthcare sector. The paper calls for proposing healthcare-specific cybersecurity performance goals that will include both minimum foundational practices and advanced goals for cybersecurity performance. By centralizing these performance goals into the Healthcare and Public
Amy Leopard
Amy Leopard is a partner and leader in Bradley’s Health Information Technology, Privacy & Security practice. Amy advises clients on complex health IT matters at the intersection of healthcare, technology, and law. She is a Fellow in HIMSS and serves on the Board of the American Health Law Association, where she chaired the AHLA Health IT Practice Group. Amy is nationally ranked in Chambers USA for Healthcare Privacy and Data Security. She is a regular thought leader and is a blog editor for Bradley’s Online and On Point blog.
U.S. Senate Judiciary Committee Holds Historic Hearing on AI Regulation
On May 16, 2023, the U.S. Senate Judiciary Committee conducted a significant oversight hearing on the regulation of artificial intelligence (AI) technology, specifically focusing on newer models of generative AI that create new content from large datasets. The hearing was chaired by Sen. Richard Blumenthal for the Subcommittee on Privacy, Technology, and the Law. He…
New Florida Law Will Ban Offshoring of Certain Patient Data
Effective July 1, 2023, a new Florida law will limit certain health care providers from storing patient information offshore. CS/CS/SB 264 (Chapter 2023-33, Laws of Florida), amends the Florida Electronic Health Records Exchange Act to require health care providers who use certified electronic health record technology to ensure that patient information is physically maintained…
Accountable AI Systems through Risk Management: NIST Creates Inaugural Framework with Principles and Playbook
On January 26, 2023, the U.S. National Institute of Standards and Technology (NIST) released the Artificial Intelligence (AI) Risk Management Framework (AI Risk Management Framework 1.0), a voluntary guidance document for managing and mitigating the risks of designing, developing, deploying, and using AI products and services. NIST also released a companion playbook for…
A Letter from the Editors
As technology and business rapidly evolve, state and federal government agencies are continually introducing new data privacy regulations that businesses need to be aware of. To address this ever-changing landscape, we are pleased to introduce our new blog—Online & On Point—to provide commentary, updates, and insight on the developments that could have an…
Prepare Now For Sharing of and Access to Electronic Health Information: Cures Act Information Blocking and Interoperability Rules Take Effect June 30, 2020
The U.S. Department of Health and Human Services (HHS) issued companion regulations advancing the interoperability of and patient access to electronic health information under the 21st Century Cures Act that will take effect June 30, 2020, with a compliance date of November 2, 2020. Now is the time to learn what the Information Blocking Rule
…