TRENDING:

HIPAA Update: Comment Period Opens

Sept. 13 is the Deadline for Feedback on Proposed Revamp Howard Anderson (ismg_editor) • July 14, 2010     A proposal to significantly revamp the HIPAA privacy, security and enforcement rules has been posted on the Federal Register, and regulators are accepting comments until Sept. 13.

The notice of proposed rulemaking is called: "Modifications to the HIPAA Privacy, Security, and Enforcement Rules Under the Health Information Technology for Economic and Clinical Health Act."

The proposal would extend the applicability of many of the HIPAA privacy and security rules' requirements to business associates and their subcontractors. These companies provide services to "covered entities," such as hospitals, clinics and insurers, and have access to protected health information.

The proposal also would create guidelines for giving patients improved access to their records. For example, if a healthcare organization maintains electronic records, it would have to offer electronic copies to patients upon request.

The HITECH Act designated the HHS Office for Civil Rights to enforce the HIPAA privacy and security rules. The notice of proposed rulemaking also outlines in great detail the legal definitions of violations and formalizes the higher penalties, of up to $1.5 million in a year, called for under HITECH.

Previous
Final HITECH Rules: The Security Details
Next
California Breach Cause: Missing CD

About the Author

Howard Anderson

Howard Anderson

News Editor, ISMG

Anderson is news editor of Information Security Media Group and was founding editor of HealthcareInfoSecurity and DataBreachToday. He has more than 40 years of journalism experience, with a focus on healthcare information technology issues. Before launching HealthcareInfoSecurity, he served as founding editor of Health Data Management magazine, where he worked for 17 years, and he served in leadership roles at several other healthcare magazines and newspapers.



Around the Network

Supply Chain Risk Management: Areas of Concern
Supply Chain Risk Management: Areas of Concern
Building a Ransomware Incident Response Plan
Building a Ransomware Incident Response Plan
Analysis: The Significance of Russian Hackers' Indictment
Analysis: The Significance of Russian Hackers' Indictment
Why Digital Identity Is Gaining Momentum
Why Digital Identity Is Gaining Momentum
Panel Discussion: Securing Digital Payments
Panel Discussion: Securing Digital Payments
Analysis: Why Regulators Got Tough With H&M
Analysis: Why Regulators Got Tough With H&M
As Telehealth Use Grows, So Do Security Concerns
As Telehealth Use Grows, So Do Security Concerns
The IRS Takes on Cryptocurrency-Funded Terrorists
The IRS Takes on Cryptocurrency-Funded Terrorists
Analysis: Ransomware Dominates the Cybercrime Landscape
Analysis: Ransomware Dominates the Cybercrime Landscape
Roger Severino, Lead HIPAA Enforcer, on Fighting Hackers
Roger Severino, Lead HIPAA Enforcer, on Fighting Hackers

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.