Rachel V. Rose, JD, MBA

home / authors / rachel-v-rose-jd-mba

Rachel V. Rose, JD, MBA, advises clients on compliance, transactions, government administrative actions, and litigation involving healthcare, cybersecurity, corporate and securities law, as well as False Claims Act and Dodd-Frank whistleblower cases. She also teaches bioethics at Baylor College of Medicine in Houston. Rachel can be reached through her website, www.rvrose.com.

Articles

gavel stethoscope | © Natalya Merzlyakova - stock.adobe.com

Clarification on three common HIPAA misconceptions

September 14th 2023

These incorrect beliefs can have you running afoul with privacy regulations.

system hacked | © James Thew - stock.adobe.com

Smishing: “Just when you thought it was safe to get back in the water.”

August 24th 2023

It's like phishing, but it targets your cell phone through text messages.

gavel and stethoscope | © blackdiamond67 - stock.adobe.com

A word of caution for departing employees and their employers alike

August 10th 2023

Patient information or data cannot be utilized without a patient or consumer’s knowledge or consent.

False claims act settlements underscore honesty as the best policy

July 20th 2023

Despite the outside temperatures, the U.S. Department of Justice (DOJ) and whistleblowers have been busy.

cyber gavel | © sasun Bughdaryan - stock.adobe.com

Healthcare cyber summer sizzle

July 6th 2023

As summer temperatures reach records, so do HHS and FTC cyber enforcement initiatives.

gavel stethoscope justice scales | © onephoto - stock.adobe.com

Business associates beware

June 13th 2023

Recent OCR enforcement action showcases business associate liability for HIPAA violations.

HIPAA and posthumous rights

June 1st 2023

Patient rights do not end at death.

HIPAA | © profit_image - stock.adobe.com

HIPAA, privacy, and noodle salad

May 18th 2023

Congress and HHS appreciate that every patient’s life does not consist of “good time, noodle salad.”

Two often overlooked HIPAA administrative requirements

May 4th 2023

Don't ignore these two important requirements.

digital gavel | © sasun Bughdaryan - stock.adobe.com

Cybersecurity: Free juice is not worth the squeeze

April 20th 2023

Hackers continue to discover new methods of getting in the way of your practice's compliance with privacy laws.

Cybersecurity risks of medical devices

April 6th 2023

Medical devices are a new front in the cybersecurity war against health care.

March Madness! Protected health information cybersecurity frenzy

March 23rd 2023

Wild behavior is pulsing through the cybersecurity landscape.

The new kid on the block: The Federal Trade Commission and data sharing

March 9th 2023

Two recent settlements underscore the FTC's status as an enforcement agency with the power to enforce consumers’ rights in relation to their sensitive information.

Cybersecurity highlights: The “money mule” and cybercriminals

February 23rd 2023

Cautionary tales ripped from the headlines.

Cybersecurity risk considerations after the FTC’s first breach notification settlement

February 9th 2023

The days of sticking one’s head in the sand should be long gone.

CMS proposes changes to the 60-day rule

January 26th 2023

On March 23, 2010, the 60-Day Rule was enacted as Section 6402 of the Affordable Care Act.

HIPAA 2023!

January 12th 2023

HHS Proposed Rule – electronic transactions and privacy rule enforcement action.

The greatest gift to give your board: Cyber awareness

December 22nd 2022

All persons with boards should be making sure that the individual board members are meeting their common law fiduciary duties, including those of loyalty and care.

Recent HIPAA, ransomware & data privacy issues to put at the top of your list

December 8th 2022

Don't let the holidays get in the way of legal compliance.

Turkey, pumpkin pie, ransomware safeguards – Check!

November 21st 2022

Cybercriminals are waiting for your guard to be down.

Cybersecurity is patient safety

November 10th 2022

In order to cultivate a culture of compliance organizations need to take a “patient safety first” approach to cybersecurity.

PHI, ePHI, and EHI – Oh my!

October 27th 2022

There is no time like the present to review these definitions and understand their relation to information blocking

Telehealth items to monitor

October 13th 2022

The top three types of care that were sought across state lines were primary care, mental health, and cancer.

Civility: The rule of law and privacy post-Roe

September 23rd 2022

The rule of law is premised on civility and applies to all citizens in the United States – regardless of their position.

Recent DOJ enforcement action a reminder about practicing medicine

September 8th 2022

A look at state requirements for practicing medicine.

Ransomware: New alert, assessing current cyber insurance coverage

August 25th 2022

The risk of ransomware underscores the importance of compliance.

Recent DOJ settlements highlight compliance opportunities for providers

August 11th 2022

These types of conduct are material and offer corporate compliance officers and practice managers the opportunity to step back, assess policies and procedures, update training – both for HIPAA and fraud, waste, and abuse, and bring in outside consultants to assess risk.

Utilizing NIST Safeguards to reduce liability under the Stored Communications Act

July 28th 2022

If a person works in a sensitive field such as healthcare, law, accounting, or finance then setting boundaries that adhere to a plethora of laws and professional obligations should be implemented.

Post-Dobbs opinion: HHS, White House responses to privacy and reproductive care

July 14th 2022

There is a lot to unpack from both the Majority and the Dissent in Dobbs.

Bipartisan legislation introduced to ban selling health and location data

June 30th 2022

The new legislation would tighten the use of patients' health and location information.

1 2 3 4 5 6 7 8

...

11 >

Do Not Sell My Information

Contact Info

2 Clarke Drive
Cranbury, NJ 08512

609-716-7777