Call Us 866.940.1101 ☰ ˟
866.940.1101
Logo
  • Home
  • About Us
    • About Us
    • Employee Directory
    • Partners Page
    • Event Calendar
    • Refer a Friend
  • Get A Quote
  • Products
    • Lawyers Malpractice Insurance
    • Accountants Professional Liability
    • Dentist Malpractice Insurance
    • Business Owners Policy
    • Cyber Liability Insurance
    • Workers Compensation Insurance
    • Title Agents E&O Insurance
    • Paralegal Malpractice Insurance
  • Testimonials
  • Common Terms
    • Common Terms
    • Frequently Asked Questions
  • Blog
  • Contact
Home > Blog > Cyber Liability/Data Breach Insurance and HIPAA are issues that Law firms need to be aware of
THURSDAY, MAY 5, 2016

Cyber Liability/Data Breach Insurance and HIPAA are issues that Law firms need to be aware of

Law firms that work with Health Insurance issues and clients should be very concerned about protecting the confidential information as prescribed by HIPPA and their legal clients.  If a Data Breach should happen with confidential Health Insurance Information compromised, in addition to 3rd party damages, you may well have 1st party responsibilities under HIPAA.  Your Lawyers Malpractice Insurance policy may cover the 3rd party damages, but likely will not cover any 1st party obligations.

Further emphasis on this is that HIPAA 2016 Phase 2 Audits have started

In April the U.S. Department of Health and Human Services Office for Civil Rights (OCR) launched Phase 2 of its HIPAA compliance audits. Phase 1 was a pilot program to assess how covered entities implemented controls and processes to protect health information. Covered entities include health care providers, health plans including insurers and company health plans, and health care clearinghouses. A Law Firm that performs certain functions or activities that involve the use or disclosure of protected health information on behalf of, or provides services to, a covered entity. Health insurance agents/agencies are considered business associates under HIPAA.

Phase 2 of the HIPAA audit program begins with an email that is sent to covered entities and business associates to verify contact information for potential auditees. Organizations only have fourteen business days to respond to OCR's request for information. Failure to respond may result in OCR using publicly available information about an organization to create its audit pool.

If an organization is selected for a desk audit, OCR will email a pre-audit questionnaire. The questionnaire asks about the size, type, and operations of potential audit targets. Pre-audit surveys should be responded to within ten business days.

It is anticipated that the results of a desk audit may trigger a third (onsite) audit and potential investigations if deficiencies are uncovered. The third set of audits will cover a broad scope of requirements from HIPAA rules.
Posted 4:42 PM

Tags: cyber liabiltyi insurance, data breach, legal malpractice
Share |

No Comments

Post a Comment
Required
Required (Not Displayed)
Required

All comments are moderated and stripped of HTML.

NOTICE: This blog and website are made available by the publisher for educational and informational purposes only. It is not be used as a substitute for competent insurance, legal, or tax advice from a licensed professional in your state. By using this blog site you understand that there is no broker client relationship between you and the blog and website publisher.
Blog Archive
  • 2021
  • 2020
  • 2019
  • 2018
  • 2017
  • 2016
  • 2015
  • 2013
  • 2011

  • lawyers professional liability insurance(429)
  • attorney malpractice insurance(335)
  • attorney malpractice(322)
  • legal malpractice(223)
  • legal liability(134)
  • data breach(92)
  • cyber insurance(91)
  • ethics(87)
  • erp(54)
  • malpractice insurance(47)
  • claims(39)
  • title agency e&o(36)
  • accountant e&o(34)
  • extended reporting period endorsement(30)
  • tail(27)
  • phishing(25)
  • claims made coverage(19)
  • extended reporting period(18)
  • accountant errors & omissions(17)
  • claims reporting(17)
  • prior acts(17)
  • cyber security(16)
  • legal malpractice insurance(16)
  • cyber liability(16)
  • ransomware(16)
  • claim prevention(16)
  • crime insurance(15)
  • attorney protective cle(14)
  • the hartford weekly newsletter(14)
  • professional liability insurance(12)
  • business owners insurance(11)
  • legal liability insurance(11)
  • retirement tail(10)
  • full prior acts(10)
  • fee suits(9)
  • bop(9)
  • title agent errors & omissions(9)
  • cyber crime(9)
  • accountant errors & omissions insurance(9)
  • prior acts date(8)
  • webinar(8)
  • non-practicing erp(8)
  • cyber liability insurance(8)
  • lawyers(8)
  • claims made(8)
  • employment practices liability(7)
  • attorney protective 2019 free cle webinar(7)
  • non-practicing extended reporting period endorsement(7)
  • malpractice claims(7)
  • policy exclusions(7)

View Mobile Version
Logo
Quick Links
Home Our Products Customer Service Payment Options Common Terms
About Us Refer A Friend Our Carriers Blog Contact Us
Location
2430 Camelot Ct SE
Grand Rapids, MI 49546
Local: 616.940.1101
Toll Free: 866.940.1101
Email: info@L2ins.com
Facebook Twitter Social LinkedIn
© Copyright. All rights reserved.
Powered by Insurance Website Builder