July 2, 2022

Volume XII, Number 183

Advertisement
Advertisement

July 01, 2022

Subscribe to Latest Legal News and Analysis

June 30, 2022

Subscribe to Latest Legal News and Analysis

June 29, 2022

Subscribe to Latest Legal News and Analysis
Advertisement

Office of the National Coordinator for Health Information Technology Releases Privacy and Security Guidance Geared Toward Small Providers

The HHS Office of the National Coordinator for Health Information Technology (“ONC”) recently released a new and improved version 2.0 of their Guide to Privacy and Security of Electronic Health Information.  This revamped version has been reorganized and rewritten to be more user-friendly for small organizations addressing federal privacy and security requirements for their practices.  Though the Guide is targeted to small providers, providers of all sizes, and their business associates, will find it useful.

The Guide provides a general overview of the HIPAA Privacy and Security Rules and the EHR Incentive Programs, and gives pragmatic advice in areas including:

  • How to identify whether a contractor is a Business Associate under HIPAA;

  • When patient authorizations are and are not required to disclose protected health information (“PHI”);

  • Questions to ask EHR health IT developers about security; and

  • How to implement a security management process to address the security requirements of the EHR Incentive Programs.

In addition to the Guide, providers can use the HIPAA compliance and training tools developed by ONC and the Office for Civil Rights (“OCR”) to assess their current privacy and security practices, including the security risk assessment tool, the HIPAA Phase I audit protocol, and ONC’s privacy and security training games.

©1994-2022 Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C. All Rights Reserved.National Law Review, Volume V, Number 127
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement

About this Author

The frictionless flow of information is a defining feature of today’s information economy. Your organization’s ability to transfer customer data, employee files, financial records, and other information around the country or the globe quickly and cheaply has opened a world of new opportunities. Privacy laws vary by jurisdiction and are interpreted unpredictably, and even if your business is extremely conscientious, it can make a false step as it captures, uses, transfers, and discloses personal information. The consequences can be serious and even devastating — heavy...

617-348-1732
Advertisement
Advertisement
Advertisement