HIPAA-covered healthcare providers must notify individuals of information breaches under new rule

Share this article:
New bill would exempt small healthcare providers from 'red flags' rule
New bill would exempt small healthcare providers from 'red flags' rule

The Department of Health and Human Services has released an interim rule regarding healthcare information privacy breaches.

Under the rule, healthcare providers and other entities covered by the Health Insurance Portability and Accountability Act (HIPAA) must notify individuals when the privacy of their "unsecured" health information is breached. The guidelines, which are published in today's Federal Register, implement provisions of the Information Technology for Economic and Clinical Health Act. The notifications encompass breaches that occur on or after Sept. 24.

Because covered entities may require time to comply with the guidelines, HHS will use its "enforcement discretion" and not immediately impose sanctions on those that fail to inform people of breaches. But HHS plans to work with those entities over the next six months to achieve compliance.

To find out more, go to the Federal Register home page here.

Share this article:

More in News

Also in the news for August 22, 2014

Iowa's nursing homes lost, on average, 41% of their employees each year from 2010-2012 ... Researchers identify proteins necessary in wound healing ... More than 40% percent of SSDI recipients take opioid pain relievers, study says.

CMS: Many skilled nursing providers have poor Medicare certification and recertification practices

CMS: Many skilled nursing providers have poor Medicare ...

The rate of improper Medicare payments to skilled nursing facilities has increased largely due to issues with certification and recertification statements, according to a recently released government memorandum. The Centers ...

NY nursing home agrees to $2.2 million settlement in case of false documentation

NY nursing home agrees to $2.2 million settlement ...

Nursing home operator Ralex Services Inc. has agreed to a $2.2 million settlement in a whistleblower case involving forged documents at a facility in New Rochelle, New York.