A Detailed Analysis of Changes to HIPAA and the Implications for Healthcare Providers and Others in the Healthcare Industry: HIPAA Privacy Rule

Changes to the HIPAA Privacy Rule:

Background: The HIPAA Privacy Rule governs the use and disclosure of Protected Health Information (“PHI”). Prior to the HITECH Act, the Privacy Rule only applied to Covered Entities (i.e., covered health care providers, health plans, and health care clearinghouses). Covered Entities could engage Business Associates to provide services to the Covered Entities involving the use or disclosure of PHI as long as the Covered Entity and the Business Associate entered into an appropriate Business Associate Agreement. Business Associates were contractually liable for compliance with the Business Associate Agreement but were not directly liable for HIPAA compliance. However, the HITECH Act provided that, as of February 17, 2010, Business Associates were also directly subject to many provisions of the Privacy Rule.

Please see full alert below for more information.

LOADING PDF: If there are any problems, click here to download the file.

Topics:  Business Associates, Covered Entities, Data Breach, Data Protection, Decedent Protection, GINA, HHS, HIPAA, HITECH, Marketing, PHI, Privacy Policy

Published In: Health Updates, Privacy Updates, Science, Computers & Technology Updates

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Womble Carlyle Sandridge & Rice, LLP | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »