Stephanie Willis is a counsel in Crowell & Moring’s Washington, D.C. office and a member of the firm’s Health Care Group. Stephanie primarily works with health care clients seeking to comply with state and federal health care anti-fraud and abuse laws, privacy and security laws, and licensing laws.
Stephanie’s work incorporates her Master of Public Health degree as well as her past experiences as an associate counsel in the Office of the Inspector General for the Department of Health and Human Services (HHS-OIG) and as an intern at the Massachusetts Division of Insurance, the Health Care Division of the Massachusetts Attorney General’s Office, and the Massachusetts Health Care Connector, which was the first health care exchange in the nation.
By Stephanie Willis on Posted in Cybersecurity / Data Security,Data Breach,Health ITThe Department of Health & Human Services Office of Civil Rights (“OCR”) announced on August 18, 2016 that it is stepping up enforcement actions related to small breaches. Although OCR investigates all reported breaches affecting more than 500 people, this new initiative will increase investigations of breaches affecting fewer than 500 people. As OCR recognizes,… Continue Reading
By Stephanie Willis on Posted in Cybersecurity / Data Security,Data BreachOn Monday, the HHS Office of Civil Rights (OCR) released its third resolution and settlement agreement in as many weeks. The $750,000 settlement with the University of Washington Medicine (“UWM”) is yet another citing the alleged failure to conduct an enterprise-wide risk analysis as required by the HIPAA Security Rule. As part of the settlement,… Continue Reading
By Jodi G. Daniel and Stephanie Willis on Posted in Data BreachThe day before Thanksgiving, the HHS Office of Civil Rights (OCR) announced its first settlement involving a reported data breach implicating security of medical devices used in the hospital setting. OCR’s $850,000 settlement and resolution agreement with Lahey Hospital and Medical Center (LHMC) stem from the theft of a laptop workstation used to operate and… Continue Reading