Ransomware attacks are increasing in their severity and sophistication, with healthcare companies being significant targets. Ransomware actors often target businesses believed to have fewer resources to invest in cyber protection, as well as those holding sensitive data, in the hopes that they will be more likely to make a quick ransom payment.
Legal Insights and Perspectives for the Healthcare Industry
We hope you were able to join us for last month's Fast Break on the Regulatory Sprint to Coordinated Care, which has been a longstanding initiative of the Centers for Medicare and Medicaid Services, US Department of Health and Human Services (HHS), and Office of the Inspector General to navigate a path to value-based payment models, culminating in the December 2020 final rules. If not, you missed a conversational session featuring Katie McDermott, Al Shay, and Jake Harper diving a bit deeper into this topic.
New York’s Stop Hacks and Improve Electronic Data Security Act, or SHIELD Act, which makes significant changes to the state’s data breach notification requirements, impacts healthcare organizations that hold computerized data with private information from New York residents. In this LawFlash, our privacy and cybersecurity team analyzes the law’s expanded definition of “private information” and offers key business takeaways for assessing compliance with the SHIELD Act, which becomes effective October 23, 2019.