HIPAA Omnibus Rule › Data Breach

The HIPAA Omnibus Rule is a final rule issued by the U.S. Department of Health and Human Services on January 17, 2013. The Rule aims to strengthen existing privacy protections within the Health Insurance Portability and Accountability Act of 1996 (HIPAA), improve the government's ability to enforce those protections, and give individuals greater access to their health information. One of the most significant changes associated with the Rule is the application of HIPAA's requirements to business associates of health care providers and health care claim processors. HHS broadened HIPAA's application to these groups after several large breaches were tied to business associates.

less -

News & Analysis as of May 20, 2013

The Biggest Changes in HIPAA/HITECH Omnibus Rule & Recommended Action Steps—Ted Kobus

The HIPAA Omnibus Final Rule—Data Privacy and Security Implications for Business Associates and Covered Entities

by Matthew Fischer | Sedgwick LLP on 4/11/2013

On January 17, 2013, the Office for Civil Rights (‘‘OCR’’) of the U.S. Department of Health and Human Services (‘‘HHS’’) published the HIPAA Omnibus Final Rule (‘‘Final Rule’’) which OCR has trumpeted as carrying ‘‘the most...more

HIPAA’S FINAL RULE: Putting Things in Perspective – Comments from OCR

by Patricia Shea | K&L Gates LLP on 4/2/2013

On March 22, 2013, Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) Director Leon Rodriguez presented the keynote address to attendees of the American Health Lawyers’ Association HIPAA/HITECH Conference in...more

What We Need to Do to Comply with the Final HIPAA Rule: A Summary of the Privacy Obligations for Health Care Providers, Health...

by Cheryl Murray | Winstead PC on 3/19/2013

On January 25, 2013, the U.S. Department of Health and Human Services (HHS) published the highly anticipated Omnibus Rule, which makes extensive changes (as promulgated by the Health Information Technology for Economic and...more

Don't Get Pinched by New HHS PHI Rules

by Baker, Donelson, Bearman, Caldwell &... on 3/11/2013

HHS has released its much-anticipated final omnibus rule about protected health information. The rule addresses privacy and security issues, including defining a business associate and expanding individuals' rights to...more

Highlights of the Omnibus HIPAA/HITECH Final Rule

by Robert Chu, William Conaboy, Gregory Fliszar, Katherine Layman, Judy Mayer | Cozen O'Connor on 3/7/2013

On January 25, 2013, the Office of Civil Rights (OCR) of the Department of Health & Human Services (HHS) published the long-awaited omnibus final regulation governing health data privacy, security and enforcement (Omnibus...more

Final Omnibus Rule modifies HIPAA Privacy, Security and Enforcement Rules

by Calvin Hayes | Fowler White Boggs P.A. on 3/5/2013

On January 25, 2013, the Final Rule modifying the Health Insurance Portability and Accountability Act (HIPAA) Privacy, Security, and Enforcement Rules was published in the Federal Register. Among other things, the omnibus...more

Final HIPAA/HITECH Rules: Compliance Actions for Employee Benefit Plans

by Hugh Davis, Kathryn Paradise | Poyner Spruill LLP on 3/5/2013

The Department of Health and Human Services recently released final regulations modifying the HIPAA Privacy, Security Breach Notification and Enforcement Rules (the “Omnibus Rule”). These regulations have far-reaching effects...more

Special Edition: Health Law Update - February 28, 2013

by Anne Foster, Cory Fox, Susan Whittaker Hughes, Theodore Kobus III, Jennifer Mills, John Mulhollan, Lynn Sessions, Kimberly M. Wong | BakerHostetler on 3/1/2013

In This Issue: - A Baker's Dozen of Significant Changes From the HIPAA/HITECH Rule 1. Business Associates and Subcontractors 2. Breach Notification 3. Covered Entity Organizational Structures 4. Cloud...more

PHI Breach Reporting Deadline is March 1, 2013

by Thompson Coburn LLP on 2/28/2013

To comply with the HITECH breach notice requirements, HIPAA covered entities are required to report all small breaches of unsecured protected health information (“PHI”) that occurred in calendar year 2012 to the U.S....more

Significant Changes to HIPAA Effective March 26, 2013

by Christie Burbank, Jade Dodds, Susan Steelman | Miller & Martin PLLC on 2/28/2013

The following is a summary of the major changes to HIPAA under the new Final Rule: 1. Breach Notification Standard Lowered — In perhaps the most significant change under the Final Rule, the new regulations considerably...more

Deadline Approaches for Reporting 2012 Small Breaches

by Adam H. Greene, Rebecca L. Williams | Davis Wright Tremaine LLP on 2/26/2013

HIPAA covered entities have through Friday, March 1, 2013, to report small breaches of unsecured protected health information that occurred in calendar year 2012 to the U.S. Department of Health and Human Services (HHS). A...more

New HIPAA Omnibus Regulations – What Employers Who Sponsor Group Health Plans Need to Know to Comply

by Denise L. Atwood | Snell & Wilmer L.L.P. on 2/22/2013

On January 25, 2013, the Department of Health and Human Services (HHS) published final regulations that modify the Privacy, Security, Enforcement and Breach Notification Rules issued pursuant to the Health Insurance...more

HIPAA Alert: Action Steps To Reach Compliance

by Travis Brennan | Bernstein Shur on 2/20/2013

As discussed in two prior HIPAA alerts, a final, 563-page Omnibus HIPAA Rule was released by the Department of Health and Human Services Office of Civil Rights to strengthen HIPAA’s security and privacy protections. The final...more

The New HIPAA Omnibus Rule & Your Liability — A Detailed Review

by Alden J. Bianchi, Dianne Bourque, Kimberly J. Gold, Cynthia Larose | Mintz Levin - Privacy & Security on 2/18/2013

As we have reported in this blog, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently released final regulations containing modifications to the HIPAA Privacy, Security, Enforcement, and...more

Expanding The Reach Of HIPAA Data Security And Privacy Requirements

by Michael Volkov on 2/18/2013

In this information technology era, it is little wonder that the Obama Administration has made enforcement of data security and privacy protections a top priority. The enforcement emphasis reflects public opinion favoring...more

HIPAA Final Omnibus Rule – published Jan. 25, 2013

by Diane Felix | Armstrong Teasdale LLP on 2/13/2013

Six Points Health Care Professionals and Organizations (and those who do business with them) Need To Know NOW: - Possible fines have increased dramatically. Under prior law, fines were capped at $100 per violation, with...more

Breaking Down The HIPAA Rule Changes: Part 3 Of 5 Modifications To The Breach Notification Rule

by Erin Fleming Dunlap, Rebecca Frigy, Matthew Murer, Thomas O'Donnell | Polsinelli on 2/11/2013

In This Issue: - Definition of “Unsecured Protected Health Information” - Notice Requirements - Action Items to Comply with the Breach Notification - Excerpt from Definition of “Unsecured Protected Health...more

HIPAA Minimum Necessary Standard Should Be Key Component of Policies and Procedures, Now More Than Ever

by Lisa Clark, Elinor Hart | Duane Morris LLP on 2/11/2013

On January 17, 2013, the U.S. Department of Health and Human Services ("HHS") announced the final omnibus rule amending the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") in accordance with the HITECH...more

Final HIPAA Regulations: What's Changed (and What Hasn't) for Group Health Plans

by Andrew Elbon, B. David Joffe, Jack Levy, Gordon Earle Nichols, Laura Schiele Robinson, Jay Turner | Bradley Arant Boult Cummings LLP on 2/8/2013

The Office for Civil Rights of the Department of Health and Human Services (“OCR”) has issued final regulations modifying the Health Insurance Portability and Accountability Act (“HIPAA”) Privacy, Security, Breach...more

What Employers That Maintain Group Health Plans Need to Know About the HIPAA Omnibus Regulations

by Denise L. Atwood | Snell & Wilmer L.L.P. on 2/8/2013

HIPAA Risk Analysis

by Elizabeth Johnson, Lynn Percival | Poyner Spruill LLP on 2/7/2013

HIPAA relies heavily on risk analysis in multiple contexts. For example, risk analysis has a major role in the Breach Notification Rule under the new regulations issued by the U.S. Department Health and Human Services on...more

A Detailed Analysis of Changes to HIPAA and the Implications for Healthcare Providers and Others in the Healthcare Industry: HIPAA...

by Jill Girardeau | Womble Carlyle Sandridge & Rice, PLLC on 2/7/2013

Changes to the HIPAA Breach Notification Rule - Background: The HITECH Act required Covered Entities to notify individuals, HHS, and in some cases, the media, of a Breach of Unsecured PHI. A Business Associate is...more

62 Results

| Page: of 3 | Next » WORKING...

View per page

Home

Legal News

Find a Lawyer

Browse Subjects

Subscribe

Pro Services

For Reporters