Final HIPAA regulations require action by covered entities and business associates.
ثبت نشده
چکیده
On January 25, 2013, the Department of Health and Human Services (“HHS”) published final regulations making important changes to requirements under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). The final regulations are the result of a rulemaking process that has taken over two years and implement changes made in the Health Information Technology for Economic and Clinical Health Act (“HITECH”), which was enacted as part of the American Recovery and Reinvestment Act of 2009, and in the Genetic Information Nondiscrimination Act of 2008 (“GINA”). The new regulations are effective March 26, 2013, and most entities will have to comply by September 23, 2013.
منابع مشابه
New HIPAA rules: a guide for radiology providers.
The Office for Civil Rights issued its long awaited final regulations modifying the HIPAA privacy, security, enforcement, and breach notification rules--the HIPAA Megarule. The new HIPAA rules will require revisions to Notice of Privacy Practices, changes to business associate agreements, revisions to HIPAA privacy and security policies and procedures, and an overall assessment of HIPAA complia...
متن کاملHITECH meets HIPAA. HITECH Act changes to HIPAA obligations for covered entities and business associates.
Application to Business Associates (effective Feb. 17, 2010). The administrative safeguards, physical safeguards, technical safeguards, and policies and procedures documentation requirements of HIPAA that previously applied only to covered entities now apply directly to business associates (both covered entities and business associate are defined terms within HIPAA). The additional security req...
متن کاملMonday , August 24 , 2009 Part II Department of Health and Human Services 45 CFR Parts 160 and 164 Breach Notification for Unsecured Protected Health Information ; Interim Final Rule
SUMMARY: The Department of Health and Human Services (HHS) is issuing this interim final rule with a request for comments to require notification of breaches of unsecured protected health information. requires HHS to issue interim final regulations within 180 days to require covered entities under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and their business associa...
متن کاملHIPAA liability: beware the secondary enforcers.
HIPAA regulations and preambles, as well as in statements from OCR personnel, an attitude of assistance and reasonableness that permeates the enforcement mindset.1 OCR appears committed to offering technical assistance and sufficient time for covered entities to achieve compliance, as long as the efforts made up to the time of an investigation have been reasonable given the nature of the covere...
متن کاملNew Proposed HIPAA Disclosures Vex Health Care Players: Who Is Asking for the Information Anyway?
is urging rule-makers not to include access report requirements in the final rule. If rule-makers do include access reports in the new rules, CHIME believes that only data gathered through certified EHRs—not the full array of designated record sets—should be expected to populate such reports. There are also numerous critics of the HHS’s conception of an expanded AOD. Daniel C. Walden, Senior Vi...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Benefits quarterly
دوره 29 2 شماره
صفحات -
تاریخ انتشار 2013