On January 21, 2021, the HHS Office for Civil Rights (OCR) published a notice of proposed rulemaking (the Proposed Rule) proposing modifications to the HIPAA Privacy Rule to address standards that might impede the transition...more
The HHS Office for Civil Rights released, at the end of last year, findings from audits it conducted in 2016 and 2017 of 166 covered entities and 41 business associates. The report represents the periodic audit that the...more
The Department of Health and Human Services (HHS) announced a Request for Information (RFI) regarding how the HIPAA Privacy, Security, and Breach Notification Rules could be modified to reduce regulatory burdens and to...more
Under the HIPAA Privacy Rule, a Covered Entity is required to revise its notice of privacy practices (“NPP”) where there is a material change to any of its privacy policies. The HIPAA/HITECH Omnibus Final Rule (the “Omnibus...more
Just days before the September 23, 2013 enforcement date for the new HITECH Act Omnibus rules, the Department of Health and Human Services' Office for Civil Rights has published several new guidance tools and documents. On...more
The HHS Office of Civil Rights (OCR) recently released several versions of a model Notice of Privacy Practices (NPP) for use by covered entity health plans and health care providers. The notices have been written specifically...more
September 23, 2013 is the fast-approaching compliance deadline for the final omnibus HIPAA/HITECH rules. Many provisions required revisions to Notices of Privacy Practices (NPPs) maintained and distributed by covered...more
In This Issue: - SPECIAL EDITION ON THE HIPAA OMNIBUS FINAL RULE PART I - REVISIONS TO THE RULES ON BREACH NOTIFICATION - FINAL RULE REQUIRES GROUP HEALTH PLANS AND PROVIDERS TO UPDATE THEIR NOTICE OF PRIVACY...more