On February 12, 2021, the Office for Civil Rights (“OCR”) of the U.S Department of Health and Human Services (“HHS”) provided additional information regarding its previously-announced discretion in the enforcement of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and the Health Information Technology for Economic and Clinical Health (“HITECH”) Act related to privacy, security, and date breaches. OCR stated that it will not penalize covered entities or their business associates for non-compliance under HIPAA for the good faith use of online or web-based scheduling applications (“WBSAs”) for scheduling COVID-19 vaccination appointments during the COVID-19 pandemic. During the
Read More