Be aware that the date for compliance is coming up fast. Overview of the New Rules Enhanced Encryption Standards To ensure the highest level of data protection, the new HIPAA rules mandate the use of advanced encryption methods for both data at rest and data in transit. This includes: Encryption of all electronic protected health information (ePHI) using AES-256 or a higher standard. Mandatory encryption of emails containing ePHI. Encryption of ePHI stored on portable devices such … [Read more...] about New HIPAA Security Rules Effective March 7, 2025
Federal HHS Seeking Comment on Reducing Regulatory Burdens of HIPAA Rules
Comments due February 11, 2019: Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), issued a Request for Information (RFI) seeking input from the public on how the Health Insurance Portability and Accountability Act (HIPAA) Rules, especially the HIPAA Privacy Rule, could be modified to further the HHS Secretary’s goal of promoting coordinated, value-based healthcare. This RFI is a part of the Regulatory Sprint to Coordinated Care, … [Read more...] about Federal HHS Seeking Comment on Reducing Regulatory Burdens of HIPAA Rules
Three Federal Health Privacy Rules including HIPPA to be reformed by HHS
U.S. Health Insurance Portability and Accountability Act of 1996 (HIPAA) laws let providers share certain private information with patient family members and outside groups in emergencies; and now the U.S. Department of Health and Human Services (HHS) secretary Alex Azar confirmed that HHS will undertake an effort to reform federal health privacy rules, stating that "In the coming months, under the leadership of my deputy secretary, Eric Hargan, HHS will be releasing requests for information … [Read more...] about Three Federal Health Privacy Rules including HIPPA to be reformed by HHS
HIPAA Notification From HHSC: Texas Vendor Loses Clients’ Personal Information. Breach may affect 1,842
The Health and Human Services Commission issue a notification about the accidental loss of protected personal information that include names, bank and health information, social security, addresses and other pertinent personal details. The breach may affect 1,842 people in the Texas. The box of forms containing client information was found beside an unsecured dumpster in Houston at the E. 40th St. complex, an Houston area eligibility office.The agency is examining this breach and an … [Read more...] about HIPAA Notification From HHSC: Texas Vendor Loses Clients’ Personal Information. Breach may affect 1,842
Institute of Medicine to Conduct Year-Long Study in HIT Safety
Under the HITECH Act of 2009, the Medicare and Medicaid electronic health record ("EHR") incentive programs provide a financial reward for the meaningful use of qualified, certified EHRs to achieve health and efficiency goals. In July, CMS announced regulations outlining the initial requirements that eligible health care providers must meet to demonstrate meaningful use of certified EHR technology for the Medicare and Medicaid incentive payments program, which CMS will administer. Also in … [Read more...] about Institute of Medicine to Conduct Year-Long Study in HIT Safety
HIPAA Update
New rules increase penalties substantially and allow self-assessment for reporting. See the details here. … [Read more...] about HIPAA Update
Introducing GINA New Genetic Information Nondiscrimination Act of 2008
President Bush is expected to sign into law the Genetic Information Nondiscrimination Act (GINA) passed last week by Congress. The new law, which has been debated in Congress for 13 years, adds to current federal anti-discrimination laws (including Title VII) prohibitions on employers and insurance companies using genetic tests showing people are at risk of developing cancer, heart disease or other ailments to reject their job applications, promotions or health care coverage, or in setting … [Read more...] about Introducing GINA New Genetic Information Nondiscrimination Act of 2008
HIPAA–Stonewalling Families is NOT the Law
HIPAA continues as the gift that just keeps giving--to lawyers at any rate. Apparently, it is being misconstrued around the country to be an obstacle to families seeking to ascertain the condition of their loved ones. From an interesting editorial in the Idaho Mountain Express: American medicine and its practitioners are among the finest anywhere in the world. However, getting to that treatment through the maze of government and insurance paperwork and waiting for an appointment is … [Read more...] about HIPAA–Stonewalling Families is NOT the Law
National Provider Identifier
A National Provider Identifier (NPI) is a 10-digit number used to identify providers under the 1996 Health Insurance Portability and Accountability Act (HIPAA). According to the Centers for Medicare and Medicaid Services, there are only 151 days left to comply with the NPI requirement. From the site: If you are a health care provider who bills for services, you probably need an NPI. If you bill Medicare for services, you definitely need an NPI! Getting an NPI is easy. Getting an NPI is … [Read more...] about National Provider Identifier
Fifth Circuit: No Private Cause of Action for HIPAA Violations
While HIPAA protects the health information of individuals, it does not create a private cause of action for those aggrieved (65 Fed. Reg. 82566).  This is made abundantly clear from the commentary to the regulations and HIPAA’s legislative history. And while many federal district courts have dismissed individual plaintiffs’ lawsuits under this rule, the Fifth Circuit, in the case of Acara v. Banks (5th Cir. Nov.13, 2006), has become the first federal appellate court to affirm the ruling. … [Read more...] about Fifth Circuit: No Private Cause of Action for HIPAA Violations
