Possibly. The European Data Protection Board (EDPB) issued draft practical guidance on various types of data breaches to assist companies with identifying situations in which a data security incident may need to be reported to EU supervisory authorities (the government regulator for privacy in various EU member countries). In instances of a lost or stolen
encrypted data
HIPAA Fine Exposure May Be Reduced by 5th Circuit Decision
By Mark L. Mattioli on
The Fifth Circuit Court of Appeals’ decision in University of Texas M.D. Anderson Cancer Center v. United States Dept. of Health and Human Services, 985 F.3d 472 (5th Cir. 2021), may provide a significant avenue for providers to challenge enforcement actions by the Office for Civil Rights (OCR). In Anderson, the Court vacated a…