HIPAA Omnibus Rule Health Information Technology for Economic and Clinical Health

The HIPAA Omnibus Rule is a final rule issued by the U.S. Department of Health and Human Services on January 17, 2013.   The Rule aims to strengthen existing privacy protections within the Health Insurance... more +
The HIPAA Omnibus Rule is a final rule issued by the U.S. Department of Health and Human Services on January 17, 2013.   The Rule aims to strengthen existing privacy protections within the Health Insurance Portability and Accountability Act of 1996 (HIPAA), improve the government's ability to enforce those protections, and give individuals greater access to their health information. One of the most significant changes associated with the Rule is the application of HIPAA's requirements to business associates of health care providers and health care claim processors. HHS broadened HIPAA's application to these groups after several large breaches were tied to business associates.  less -
News & Analysis as of

Transitional Compliance Period for Business Associate Agreements Expiring September 23, 2014

If they have not already done so, covered entities and business associates have until September 23, 2014, to update their business associate agreements to comply with the January 2013 changes to the Health Insurance...more

Foundations in HIPAA - Building Blocks of Health Law

Recent enforcement actions and the new Omnibus Rule implementing several HITECH obligations highlighted the need for a new look at HIPAA obligations for covered entities and now business associates. HITECH not only raised the...more

HHS Delays NPP Amendment Requirement for Laboratories Regulated Under CLIA

Under the HIPAA Privacy Rule, a Covered Entity is required to revise its notice of privacy practices (“NPP”) where there is a material change to any of its privacy policies. The HIPAA/HITECH Omnibus Final Rule (the “Omnibus...more

Cloud Computing: Healthcare Issues in a Digital Age – (Part Two)

Hospitals and health care providers must often look to third party vendors offering cloud computing solutions, but are these companies well-prepared to meet the HIPPA/HITECH Act privacy and security requirements as well as...more

Refill Reminder Exception to the Privacy Rule Created by the HITECH Act

The passing of the Health Information Technology for Economic and Clinical Health Act (HITECH) resulted in multiple changes regarding existing protection of protected health information (PHI) under the Health Insurance...more

Hearing to Address HIPAA Accounting of Disclosures

The HHS Office of Civil Rights (OCR) announced that the Health Information Technology (HIT) Policy Committee’s Privacy and Security Tiger Team will hold a virtual, public hearing on Monday, September 30 from 11:45 a.m. to...more

HIPAA Omnibus Rule Compliance Deadline

September 23, 2013, the deadline for compliance with the new Health Insurance Portability and Accountability Act (HIPAA) regulations, is here. Although there has been much discussion about the new regulations since they were...more

It's Never Too Late To Give Guidance: OCR Starts Releasing HIPAA Omnibus Rule Guidance In Anticipation Of September 23 Compliance...

This has been a busy week for the Department of Health and Human Services / Office for Civil Rights (HHS/OCR). It has started releasing guidance on various provisions of the Omnibus HIPAA final rule (the "Final Rule") in...more

Days Before Enforcement Date OCR Issues New Guidance

Just days before the September 23, 2013 enforcement date for the new HITECH Act Omnibus rules, the Department of Health and Human Services' Office for Civil Rights has published several new guidance tools and documents. On...more

HHS Office of Civil Rights Releases Several Model Notices of Privacy Practices

The HHS Office of Civil Rights (OCR) recently released several versions of a model Notice of Privacy Practices (NPP) for use by covered entity health plans and health care providers. The notices have been written specifically...more

HHS To Revamp Limits On Payments To Pharmacies For Refill Reminder Programs

The HIPAA Privacy Regulations have long required covered entities to seek a patient authorization in order to use or disclose protected health information ("PHI") for marketing purposes. However, the Office for Civil Rights...more

Omnibus HIPAA/HITECH Rules Require Changes to Notice of Privacy Practices Prior to September 23, 2013

Earlier this year, the Office for Civil Rights (OCR) in the Department of Health and Human Services (HHS) issued its long-awaited omnibus regulations that make significant modifications to the HIPAA Privacy, Security,...more

Tick, Tock: Less than 60 Days to Comply with Updated HIPAA/HITECH Rules

There are now less than 60 days left for covered entities and business associates to implement provisions set forth in the final omnibus HIPAA/HITECH rules issued by the U.S. Department of Health and Human Services (HHS) in...more

HITECH What You Need to Know About Electronic Protected Health Information

Recently enacted legislation has resulted in extensive expansions to the privacy, security, breach notification and enforcement rules of the Health Information Technology for Economic and Clinical Health (HITECH) Act under...more

Are Your HIPAA Privacy Policies Up to Date?

If you haven’t focused on HIPAA lately, now is the time....more

Recent Employee Benefit Developments

HIPAA Final Regulations - In January of this year, the Department of Health and Human Services issued final regulations (also referred to as the “Omnibus Rule”) that include changes to the privacy, security and breach...more

Employment Law Blog: Regzilla Stomps Another One! - Idaho State University and the Compliance Gap Analysis

Presumably at this point HIPAA, HITECH and the Omnibus Regulation have been published, digested and everyone is in full compliance with the requirements that have been set forth....more

HIPAA Enforcement: Unleashing The Dogs

Prosecutors are a fun bunch and they love their jobs and their mission – to prosecute law-breakers for violating the law. ...more

Rx for HIPAA Compliance

Weighing in at half the length of Tolstoy’s legendary tome War and Peace, it is no surprise that the thought of the impending deadline for compliance with the 538-page HIPAA Omnibus Rule has left many small clinical...more

Cloud Storage Providers Storing Protected Health Information May Be Obligated to Comply with HIPAA Regulations

A recently issued government rule may unknowingly create significant liability and legal risk for many technology enterprises. The expanded definition of "business associates" and related interpretations by the Department of...more

HIPAA/HITECH Final Rule - Assessing Your Organization's Compliance Readiness

The long awaited HIPAA/HITECH Final Rule became effective March 26, 2013, but covered entities, business associates and subcontractors will have until September 23, 2013, to fully comply. ...more

The HIPAA/HITECH Final Rule has arrived!

If you are a health care provider and/or someone who routinely performs work involving patient health information on behalf of a health care provider, you likely need to know about the HIPAA/HITECH Final Rule....more

Scripts - April 2013

In This Issue: - Key Provisions In the Final Omnibus HIPAA/HITECH Rules and What They Mean for You - NLRB and EEOC May Target Employer Efforts to Keep Employees Quiet During Internal Investigations -...more

HIPAA’S FINAL RULE: Putting Things in Perspective – Comments from OCR

On March 22, 2013, Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) Director Leon Rodriguez presented the keynote address to attendees of the American Health Lawyers’ Association HIPAA/HITECH Conference in...more

McAfee & Taft EmployerLINC Employee Benefits Alert: New HIPAA regulations for sponsors of group health plans

The U.S. Department of Health and Human Services recently released its final regulations – also known as the “Final Rule” or “Omnibus Rule” – modifying the privacy, security, breach notification and enforcement rules...more

98 Results
|
View per page
Page: of 4