Excerpt: Peers Mourn Loss of Chris Apgar, Beloved HIPAA Expert

Chris Apgar HIPAA expert

The following is excerpted from Theresa Defino’s article in “Report on Patient Privacy”,  Volume 22, Number 1 • January 2022 It wouldn’t be too much of an exaggeration to say that fans of the late Chris Apgar seem to have run out of words to describe the respected and well-liked HIPAA professional, who formed his … Read more

On the untimely passing of Chris Apgar, Founder of Apgar & Associates

Chris Apgar passes away

We at Apgar & Associates, LLC, are deeply saddened to share that Chris Apgar passed away unexpectedly this past weekend. As you may know, Chris founded Apgar & Associates over a decade ago. Chris and I have been life and business partners for years, helping hundreds of clients navigate complex information security and privacy issues. … Read more

Minimize Risk: Healthcare’s Need to Address the Unknown Unknowns

risk management

Government agencies – state and federal – have spent the past several months trying to get healthcare’s attention about cybersecurity and simple steps that organizations can take to reduce their risk of ransomware (aka minimize risk). “There are known knowns; there are things we know we know. We also know there are known unknowns; that … Read more

What will the CPRA passing mean to anyone doing business with Californians?

CPRA passage california privacy act

With the California Privacy Rights Act (CPRA) passage (aka Prop 24), the CCPA, already strict in its interpretation of PII, expands consumer rights and places new requirements on businesses. A few loopholes close, definitions gain clarity – and it becomes even more imperative to educate and notify consumers on data use, personalization, and so forth. … Read more

What’s the California Assembly’s Course Correction mean to CCPA?

CCPA Course Correction HIPAA Exemption

Well, remember the issues around what the “HIPAA exemption” in the California Consumer Privacy Act (CCPA) really applied to?  We wrote about it here all the way back in May 2019. Turns out our impression was correct – so correct that California just passed a law to correct it! Here’s the skinny: On September 5, … Read more

How the SHIELD Act Expands Legal Reach on Breaches

New York SHIELD Act image

Interested in some (thankfully) non-pandemic related news? New York State’s SHIELD Act is in effect as of March 21, 2020. The SHIELD Act (Stop Hacks and Improve Electronic Data Security Act) takes several actions, including: broadening the definition of “Private Information”, expanding the definition of breach, and expanding the reach of the law to include … Read more

What does the CCPA have to do with Policies & Procedures?

policies procedures CCPA

Compliance with CCPA is entwined with how you do business. Your business operations (the “how and what”) directly link to company policy, controls, processes: policies and procedures. You could say that the CCPA has everything to do with policies and procedures. Which is why you need to update yours – yesterday. Not convinced? Let’s go … Read more

The CCPA and the Iffy Territory of the “HIPAA exemption”

CCPA HIPAA exemption

A brief recap: The California Consumer Privacy Act (CCPA) aims to give California consumers greater control over their personal information by imposing certain obligations on entities covered by the law. The CCPA takes effect January 1, 2020. And as we said in an earlier blog article, you don’t have to be a California-based business to … Read more