The privacy and security rules under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) are critically important for employers to understand and comply with. In general, HIPAA requires that records containing individually identifiable health information are secure and only available to certain parties. Additionally, HIPAA also requires that privacy procedures are adopted and implemented to maintain secure health information, employees are trained to understand and follow privacy procedures, and individuals are notified about their privacy rights and how their health information can and will be used. 
Continue Reading How Much Is Your Privacy Worth? According to Department of Health and Human Services, Millions.

Today, the U.S. Supreme Court ruled that an employer may be held liable for retaliating against an employee who did not engage in any protected activity, but who has a close relationship with another employee who did engage in protected activity.

Continue Reading Supreme Court Finds that Employee Who Did Not Engage in Protected Activity Under Title VII is Still Protected by Title VII’s Anti-Retaliation Prohibition

            The Department of Labor (DOL) has recently published proposed regulations under the Employee Retirement Income Security Act (ERISA) to expand the definition of who is a fiduciary with respect
Continue Reading A New Definition of “Fiduciary” Under ERISA Expands Liability For Providing Employee Benefit Plan Investment Advice