HIPAA Interim Final Rule, October 30, 2009
Client Alert | less than 1 min read | 11.06.09
On October 30, 2009, the Department of Health and Human Services (HHS) published an interim final rule conforming HIPAA's enforcement regulations to revisions made under the HITECH Act. The interim final rule strengthens HHS' civil money penalty authority by establishing categories of violations reflecting levels of culpability, increasing the civil penalty amounts, and modifying the affirmative defenses available to covered entities.
Click here to view a presentation on the HIPAA Final Rule [PDF]
Insights
Client Alert | 13 min read | 06.12.26
The EU Cyber Resilience Act (CRA) is an EU product cybersecurity law for connected products (formally, “products with digital elements” under the CRA) commercialized in the EU; it entered into force on 10 December 2024, with direct application across the EU. Full application begins 11 December 2027, but one of its most operationally demanding provisions takes effect in just under 100 days, on 11 September 2026: the mandatory vulnerability and incident reporting under Article 14 CRA.
Client Alert | 6 min read | 06.11.26
CMS Announces New Medicaid Eligibility Requirements: Implications for Managed Care Plans
Client Alert | 7 min read | 06.11.26
Qatar Rewrites the Playbook: What the New Public M&A Rules Mean for Market Participants
Client Alert | 6 min read | 06.09.26
Is Stock-a-palooza Over? Supreme Court allows SEC to Pursue Disgorgement
