“Don’t Tell My Mom”: A Guide to HIPAA Compliance for Minor Patients

“Don’t Tell My Mom”: A Guide to HIPAA Compliance for Minor Patients

As a healthcare provider, when a minor patient approaches you and pleads, “Don’t tell my mom,” abiding by your patient’s wishes is anything but simple. In fact, HIPAA offers no protection to minors and requires healthcare providers to release a minor patient’s medical records to the child’s parent or guardian when requested. This guide to...

read more

Payment Models in Post-Acute Healthcare Settings: A Primer

Payment Models in Post-Acute Healthcare Settings: A Primer

For several years now, CMS has been trying to move providers into value-based payment models. But they’ve recently recognized that pushing a hospital into a value-based model doesn’t mean that individual providers actually become value-motivated. Now, CMS is working to link a provider’s fee for service to the provider’s quality of care. MACRA and Payment...

read more

5 Lessons from the ATI Physical Therapy HIPAA Breach

5 Lessons from the ATI Physical Therapy HIPAA Breach

Earlier this month, ATI Physical Therapy in Illinois submitted a HIPAA breach notification to the U.S. Department of Health and Human Services. An IT-related breach compromised the protected health information (“PHI”) of 35,136 patients.  In January, ATI discovered that some employees’ direct deposit information had been altered, and it subsequently launched a forensic investigation into...

read more

Why your Notice of Privacy Practices alone doesn’t satisfy your HIPAA obligations

Why your Notice of Privacy Practices alone doesn’t satisfy your HIPAA obligations

We hear this question a lot. “I already have a Notice of Privacy Practices. Does that mean I don’t need the HIPAA policy you mentioned?” And the answer is always, without exception, a resounding no. A Notice of Privacy Practices document is not a substitute for written privacy policies and procedures, nor is it sufficient to satisfy...

read more

How to Ensure Your Texts & Emails Don’t Violate HIPAA: Connor Jackson guest blogs for WebPT

How to Ensure Your Texts & Emails Don’t Violate HIPAA: Connor Jackson guest blogs for WebPT

Patients and providers alike are relying upon text messages, social media, and email to communicate with or about patients’ healthcare. But this often places patients’ personal health information at risk, and these forms of communication may put providers in HIPAA’s crosshairs. Check out partner Connor Jackson’s latest guest blog for WebPT, and learn 10 tips...

read more

Dallas hospital pays out $3.2 million for HIPAA breach

Dallas hospital pays out $3.2 million for HIPAA breach

Children’s Medical Center had failed to implement procedures that were compliant with HIPAA.  It did not implement risk management plans, nor did it use encryption on all of its laptops, workstations, mobile devices, or removable media...

read more

How to Endorse a Product or Service Without Breaking the Rules

How to Endorse a Product or Service Without Breaking the Rules

Many companies offer commissions on referrals for a reason: when someone you trust recommends a product or service, your enthusiasm for purchasing it is heightened.  This enthusiasm will likely diminish, however, if you knew that the referrer was being compensated for the referral. It’s for this reason that the FTC created an Endorsement Guide, the purpose of which is to promote honest and non-misleading...

read more

Jackson LLP on the road: a photoblog!

Jackson LLP on the road: a photoblog!

Anyone who follows Erin or Connor on Twitter knows that we've been traveling lately ... a lot!  Within the month of April, Erin spoke at physical therapy association conferences in Florida, Missouri, and Illinois.  We also traveled to California for a legal professional engagement (and a mini-vacation).  For those who spent time with us during these travels, or just for those who're antsing to get to know us better, here's a few photos from the...

read more