Physician Practice Caught in OCR Crossfire Following Theft of Unencrypted Flash Drive

By | Life Sciences Legal Update | January 7, 2014
Physician Practice Caught in OCR Crossfire Following Theft of Unencrypted Flash Drive

The theft of an unencrypted flash drive has led to an agreement by Adult & Pediatric Dermatology, P.C., of Concord, Mass. (APDerm), to pay $150,000 to the Department of Health and Human Services’ Office for Civil Rights (OCR) to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy, Security, and Breach Notification Rules.

Dermatology Practice Hit with $150,000 HIPAA Penalty

By | HealtHITechLaw | January 7, 2014

2013 ended like it started – with OCR actively monitoring and enforcing health care provider HIPAA compliance.  On December 26, 2013, OCR imposed a $150,000 penalty and a corrective action plan upon a Massachusetts dermatology physician practice arising out of a self-reported HIPAA breach.   See

Is NSA’s Surveillance Legal? Yes or No?

By | From the Sidebar | January 7, 2014
Credit - Elvert Barnes

Six months after Edward Snowden began leaking information about the National Security Agency’s secret data collection methods, two federal judges – one in Washington, D.C. and one in New York – have reached opposite conclusions about whether one NSA program unlawfully searches the phone records of millions of Americans. 

The EFPIA and PhRMA Principles for Responsible Sharing of Clinical Trial Data in Europe Enter into Force On 1 January 2014

By | Focus on Regulation | January 6, 2014

On 1 January 2014, the joint Principles for Responsible Clinical Trial Data Sharing (“the Principles”) endorsed by the European Federation of Pharmaceutical Industries and Associations (“EFPIA”) and Pharmaceutical Research and Manufacturers of America (“PhRMA”) entered into force. EFPIA and PhRMA endorsed these Principles on 24 July 2013. The Principles are available at EFPIA website.