OCR Meeting

Today, along with my colleagues of the ABA Joint Committee of Employee Benefits, I met with the HHS Office of Civil Rights.  OCR is responsible for setting and enforcing the standards for covered entities and business associates under the HIPAA privacy and security rules.  Some very good questions (and hopefully good answers) were discussed at today's meeting.  The written questions and answers should be out sometime in July on the JCEB website, and I will post a link when that occurs.

Latest Thinking

View more Insights
Insights Center
Knowledge assets are defined in the study as confidential information critical to the development, performance and marketing of a company’s core business, other than personal information that would trigger notice requirements under law. For example,
The new study shows dramatic increases in threats and awareness of threats to these “crown jewels,” as well as dramatic improvements in addressing those threats by the highest performing organizations. Awareness of the risk to knowledge assets increased as more respondents acknowledged that their