Nebraska has joined the growing number of states to adopt a comprehensive consumer data protection law this legislative session. The Governor signed the Data Privacy Act (the Act) into law on April 17, 2024, where the Act takes effect on January 1, 2025. We will provide detailed analysis of the […]
Publications
The Threat from Open-Source Software
Background On March 29, 2024, a Microsoft developer noticed something wrong with his Debian system using XZ Utils. XZ Utils is a compression algorithm that is used extensively on Linux systems, especially some of the most ubiquitous systems such as Debian and Red Hat. According to reports, the user account […]
CFPB Supervisory Highlights Focuses on Accuracy of Credit Reporting
Earlier this month, the Consumer Financial Protection Bureau (“CFPB”) published the latest edition of its Supervisory Highlights for Spring 2024. The latest edition of supervisory highlights focuses on credit reporting and cites instances involving both credit reporting companies and furnishers of reporting information as needing correction under the Fair Credit […]
Important Office for Civil Rights Headlines: Updated Tracking Technology Guidance; the Change Healthcare Cyberattack; and New HIPAA Privacy Rule
The Office for Civil Rights (OCR) has been quite busy the last several weeks communicating with HIPAA covered entities through several different formats – updated Guidance, a Dear Colleague Letter and an FAQ webpage – to remind covered entities of their obligations under HIPAA. In each of these communications, OCR […]
Updates Required! CMS Releases New Guidelines for Informed Consent
The Centers for Medicare and Medicaid Services (CMS) recently updated guidelines for obtaining and documenting informed consent. QSO-24-10[1] outlines CMS’ revisions and clarifications to the hospital interpretive guidelines. While this guidance specifically summarizes the requirements for acute hospitals, critical access hospitals should also review and update policies and processes for […]