Skip to content Skip to navigation

BREAKING: HHS Releases HIPAA Update

January 17, 2013
by Gabriel Perna
| Reprints

The U.S. Department of Health and Human Services (HHS) has released an update to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), aiming to better protect patient privacy and safeguard patients’ health information in the digital age, according to HHS Secretary Kathleen Sebelius. 

The changes to HIPAA, according to HHS, are a bit consumer-focused. For instance, patients can now ask for a copy of their electronic medical record in an electronic form. Furthermore, HHS is allowing individuals the ability to tell their provider to not share information about their treatment with their health plan. There are also limits on how your health information can be used and disclosed for marketing and fundraising purposes. It also has forbidden the sale of a patients’ health information without their permission.

According to HHS, this HIPAA update will also expand the legislation to include greater focus and requirements of business associates of providers, payers, and other healthcare organizations that receive protected health information (PHI). HHS cites the fact that many of the largest data breaches in the past have been due to third-party mishap. As a result, penalties have been increased for noncompliance based on the level of negligence with a maximum penalty of $1.5 million per violation.

“This final omnibus rule marks the most sweeping changes to the HIPAA Privacy and Security Rules since they were first implemented,” HHS Office for Civil Rights Director Leon Rodriguez said in a statement.   “These changes not only greatly enhance a patient’s privacy rights and protections, but also strengthen the ability of my office to vigorously enforce the HIPAA privacy and security protections, regardless of whether the information is being held by a health plan, a health care provider, or one of their business associates.”

These and other HIPAA changes can be viewed here.

Health IT Summit Series - Focus: CYBER-SECURITY

Get the latest information on Cyber-Security, and attend other valuable sessions at this two-day, intimate event bringing together C-level, physician, practice management and IT decision makers for strategy discussions, knowledge exchange, and one-on-one meetings.

Boston, June 23-24   |   Denver, July 12-13
Topics

News

USC’s Keck Medical Center Reports Ransomware Attack

September 26, 2016
The Los Angeles-based Keck Medical Center, part of the University of Southern California, has confirmed that two if its servers were hit with ransomware last month, leading to encrypted files that employees could not access.

Department of Justice Awards $8.8 Million in Grant Funding for Prescription Drug Monitoring Programs

September 26, 2016
In efforts to help states reduce prescription drug abuse and misuse, the U.S. Department of Justice announced is providing close to $9 million in grants to 19 state states to help create, implement and enhance prescription drug monitoring programs (PDMPs).

Federal Leaders Release New Tools to Help Providers Better Leverage Health IT

September 26, 2016
President Barack Obama issued a message on Sept. 26 to kick off National Health IT Week, expressing optimism for where the industry stands today as well as hope for “reaching for the next frontier of innovation.”

Care New England Health System Will Pay $400,000 Settlement for Potential HIPAA Violations

September 26, 2016
Providence, R.I.-based Care New England Health System has agreed to pay $400,000 to settle potential HIPAA Privacy and Security Rules violations, stemming from a 2012 data breach at Woman and Infants Hospital of Rhode Island.

AMA Survey: Docs Bullish on Efficient Digital Health Tools

September 26, 2016
While overall physician optimism towards digital health is present across all ages, health IT tools need to be beneficial to clinical practice and not a burden, according to an American Medical Association (AMA) survey on digital health.

Survey: Cloud Technologies Helping Healthcare Organizations Improve Productivity, Efficiency

September 23, 2016
Ninety-five percent of current healthcare organization cloud infrastructure users are planning to increase their usage going forward, and among healthcare organizations not using cloud today, 58 percent of respondents said they are likely to do so in the next two years.

Study Finds Wide Variability in Effectiveness of CPOE Tools in Pediatric Hospitals

September 23, 2016
Researchers investigating the safety of CPOE systems at pediatric inpatient facilities found that while systems on average are able to intercept a majority of potential medication errors, their effectiveness varied widely among implementations.

Saint Francis Health System Acknowledges Breach, but Doesn’t Pay Ransom

September 22, 2016
Despite acknowledging that it had been the victim of a data breach involving ransomware earlier this month, the Tulsa, Okla.-based Saint Francis Health System decided not to act on the ransom demand, according to media reports.

Indian Health Service Awards $6.8 Million Contract to Avera Health for Telemedicine Services

September 22, 2016
Avera Health, a Sioux Falls, South Dakota-based health system will provide telemedicine services for seven hospitals and eight health centers within the Indian Health Service (IHS), as part of $6.8 million contract.

Provider Associations Laud Bipartisan, ACO-Focused Legislation

September 22, 2016
Four major healthcare professional associations on Thursday publicly expressed support for legislation aimed at modifying the Medicare Shared Savings Program for ACOs in order to ease providers’ concerns

AMIA Seeks Out Support for Health IT Safety Strategy, other Innovation Initiatives

September 22, 2016
The Bethesda, Md.-based American Medical Informatics Association (AMIA) took to Capitol Hill this week seeking Congressional support for a national health IT safety strategy, as well as to fund efforts such as the Precision Medicine and Cancer Moonshot Initiatives.

Dr. Mostashari Gives “Report from the Field” Inside Look on Aledade ACOs

September 21, 2016
Farzad Mostashari, M.D., founder of Aledade, a company focused on physician-led accountable care organizations (ACOs), co-published a report this week looking at the highs and lows of Medicare Shared Savings Program (MSSP) ACOs in light of recent performance results released by the government.

Dignity Health, Catholic Health Initiatives Collaborating on Precision Medicine Program

September 21, 2016
San Francisco-based Dignity Health and the Englewood, Colo.-based Catholic Health Initiatives (CHI) are collaborating on a large, community-based precision medicine program that could be available to approximately 12 million patients annually.

Walgreens Adds Teledermatology to its Digital Health Platform

September 21, 2016
Walgreens has developed a skin care platform that will be available digitally through Walgreens.com and the Walgreens mobile app and includes a connection to teledermatology services.

Study: 30 Percent of Patient Data Breaches Involve Business Associates

September 21, 2016
So far in 2016, third-party data breaches have impacted 4.5 million patients, indicating that third-party business associates pose an alarming risk to patient data, according to a new report from Protenus and DataBreaches.net.

Pages