TRENDING:

HIPAA Update: Comment Period Opens

Sept. 13 is the Deadline for Feedback on Proposed Revamp Howard Anderson (ismg_editor) • July 14, 2010     A proposal to significantly revamp the HIPAA privacy, security and enforcement rules has been posted on the Federal Register, and regulators are accepting comments until Sept. 13.

The notice of proposed rulemaking is called: "Modifications to the HIPAA Privacy, Security, and Enforcement Rules Under the Health Information Technology for Economic and Clinical Health Act."

The proposal would extend the applicability of many of the HIPAA privacy and security rules' requirements to business associates and their subcontractors. These companies provide services to "covered entities," such as hospitals, clinics and insurers, and have access to protected health information.

The proposal also would create guidelines for giving patients improved access to their records. For example, if a healthcare organization maintains electronic records, it would have to offer electronic copies to patients upon request.

The HITECH Act designated the HHS Office for Civil Rights to enforce the HIPAA privacy and security rules. The notice of proposed rulemaking also outlines in great detail the legal definitions of violations and formalizes the higher penalties, of up to $1.5 million in a year, called for under HITECH.

Previous
Final HITECH Rules: The Security Details
Next
California Breach Cause: Missing CD

About the Author

Howard Anderson

Howard Anderson

News Editor, ISMG

Anderson is news editor of Information Security Media Group and was founding editor of HealthcareInfoSecurity and DataBreachToday. He has more than 40 years of journalism experience, with a focus on healthcare information technology issues. Before launching HealthcareInfoSecurity, he served as founding editor of Health Data Management magazine, where he worked for 17 years, and he served in leadership roles at several other healthcare magazines and newspapers.



Around the Network

Medical Device Incident Response: Patient Safety Concerns
Medical Device Incident Response: Patient Safety Concerns
Fighting the Serious Apache Log4j Flaw: What's the Latest?
Fighting the Serious Apache Log4j Flaw: What's the Latest?
Why Healthcare Will Remain a Top Cyberattack Target in 2022
Why Healthcare Will Remain a Top Cyberattack Target in 2022
Making Cybersecurity Marketing People-Centric
Making Cybersecurity Marketing People-Centric
DevSecOps in Healthcare: Critical Considerations
DevSecOps in Healthcare: Critical Considerations
How Evolving Privacy Regulations Affect Consumer Health Apps
How Evolving Privacy Regulations Affect Consumer Health Apps
Ransomware Gatecrashes the Apache Log4j Attack Party
Ransomware Gatecrashes the Apache Log4j Attack Party
Coming Invasion? Russian Cyber Activity in Ukraine Escalates
Coming Invasion? Russian Cyber Activity in Ukraine Escalates
2021 End-of-Year Special: Examining Biden's Executive Order
2021 End-of-Year Special: Examining Biden's Executive Order
Preventing 'Rogue Device' Attacks: A Case Study
Preventing 'Rogue Device' Attacks: A Case Study

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.