Health Information Privacy/HIPAA Breach Litigation

Krieg DeVault provides legal counsel to clients with HIPAA, data and privacy breaches and other security incidents. Below is a sampling of the Firm’s recent and current matters involving HIPAA and data breaches and security incidents, and representation of clients in HIPAA/data breach litigation cases.

Represented large healthcare group in a ransomware attack involving thousands of patients that were located in all fifty states, which representation included handling the initial mitigation, risk assessment, coordination with IT vendor, coordination with law enforcement, conducing the HIPAA risk assessment and other related matters.
Represented national health IT company against an individual in a case involving a data breach from a security incident that resulted in a win on summary judgment.
Represent multiple Indiana and national health care providers with HIPAA breaches and security incidents, risk assessments and reporting obligations to both federal and state regulators. These HIPAA breaches and security incidents involved a wide range of issues, including ransomware, phishing attacks, password management issues, patient portal issues, employee negligence and intentional misconduct, social media disclosures, faxing issues, improper disposal of PHI, mailing issues, analysis of media responses, and other matters.
Represent multiple Indiana health care providers and business associates in drafting HIPAA policies and procedures, auditing HIPAA issues, and providing employee training.
Represent multiple Indiana health care providers in HIPAA breaches caused by their business associates and related business associate issues, such as pursuit of business associate for costs and fees.
Represented healthcare practice with OCR investigation of potential HIPAA breach with a successful result.
Represented the State of Indiana in a variety of data breach investigations and Indiana Attorney General cases.
Handled several data breach cases involving unauthorized disclosure of patient records to successful conclusion with the Indiana Attorney General’s Office.

Practice Contact

Stacy Walton Long

Partner
slong@kdlegal.com
p: 317-238-6356
f: 317-636-1507

Insights

Health Care

February 13, 2024
Don’t Forget About the Leap Year - Annual HIPAA Breach Notification Deadline Fast-Approaching

Represented large healthcare group in a ransomware attack involving thousands of patients that were located in all fifty states, which representation included handling the initial mitigation, risk assessment, coordination with IT vendor, coordination with law enforcement, conducing the HIPAA risk assessment and other related matters.
Represented national health IT company against an individual in a case involving a data breach from a security incident that resulted in a win on summary judgment.
Represent multiple Indiana and national health care providers with HIPAA breaches and security incidents, risk assessments and reporting obligations to both federal and state regulators. These HIPAA breaches and security incidents involved a wide range of issues, including ransomware, phishing attacks, password management issues, patient portal issues, employee negligence and intentional misconduct, social media disclosures, faxing issues, improper disposal of PHI, mailing issues, analysis of media responses, and other matters.
Represent multiple Indiana health care providers and business associates in drafting HIPAA policies and procedures, auditing HIPAA issues, and providing employee training.
Represent multiple Indiana health care providers in HIPAA breaches caused by their business associates and related business associate issues, such as pursuit of business associate for costs and fees.
Represented healthcare practice with OCR investigation of potential HIPAA breach with a successful result.
Represented the State of Indiana in a variety of data breach investigations and Indiana Attorney General cases.
Handled several data breach cases involving unauthorized disclosure of patient records to successful conclusion with the Indiana Attorney General’s Office.