As reported in my January 24th, 2013 post, the Office for Civil Rights of the U.S. Department of Health and Human Services (HHS) issued an omnibus final rule (the Rule) implementing changes in current regulations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), pursuant to the Health Information Technology for Economic and Clinical Health Act (HITECH Act). In addition to finalizing proposed regulations set forth in a proposed rule dated July 14, 2010, it also addressed other HIPAA provisions. It also finalized a proposed rule issued in 2009 that implements the HIPAA-related genetic privacy provisions of the Genetic Information Nondiscrimination Act (GINA).
On September 23, 2013, the Office for Civil Rights of the U.S. Department of Health and Human Services (HHS) will begin enforcing far-reaching changes in the HIPAA privacy, security, and breach notification requirements mandated by the Health Information Technology for Economic and Clinical Health Act (HITECH) Act and the Genetic Information Nondiscrimination Act (GINA).
Foley & Lardner is hosting a Web conference on March 19th, 2013, to discuss the Final Rule and how to prepare for it. Topics to be covered include:
- The changes made by the Final Rule, including the expansion of the definition of “business associate” to include subcontractors and other parties not previously covered
- Changes in the risk analysis for breaches that will likely require breach notification more frequently
- Practical tips for how to implement the changes in an efficient and cost-effective way
- How covered entities can minimize their potential liability for the breaches or other violations of their business associations
Those interested in attending can register here.