After a long-wait and growing anticipation, the Department of Health and Human Services Office for Civil Rights released the final rule updating several provisions of the Health Insurance Portability and Accountability Act (HIPAA) on Jan. 17, 2013. While the rule becomes effective March 26, covered entities and their business associates have until September 23 to comply with its requirements.
The final rule provides for the following:
1. changes to the HIPAA Privacy and Security rules as required by the Health Information and Clinical Health Act (HITECH);
2. changes to the HIPAA enforcement rule;
3. final regulations concerning data breach reporting requirements; and
4. changes to the Privacy Rule as required by the Genetic Information Nondiscrimination Act (GINA)
The Barnes & Thornburg Healthcare Department will be providing an in-depth analysis of the final rule through blog entries and webinars in the upcoming weeks. Keep checking the blog for more information on what covered entities and business associations can expect under these new regulations.© 2013 BARNES & THORNBURG LLP