Skip to content Skip to navigation

BREAKING: HHS Releases HIPAA Update

January 17, 2013
by Gabriel Perna
| Reprints

The U.S. Department of Health and Human Services (HHS) has released an update to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), aiming to better protect patient privacy and safeguard patients’ health information in the digital age, according to HHS Secretary Kathleen Sebelius. 

The changes to HIPAA, according to HHS, are a bit consumer-focused. For instance, patients can now ask for a copy of their electronic medical record in an electronic form. Furthermore, HHS is allowing individuals the ability to tell their provider to not share information about their treatment with their health plan. There are also limits on how your health information can be used and disclosed for marketing and fundraising purposes. It also has forbidden the sale of a patients’ health information without their permission.

According to HHS, this HIPAA update will also expand the legislation to include greater focus and requirements of business associates of providers, payers, and other healthcare organizations that receive protected health information (PHI). HHS cites the fact that many of the largest data breaches in the past have been due to third-party mishap. As a result, penalties have been increased for noncompliance based on the level of negligence with a maximum penalty of $1.5 million per violation.

“This final omnibus rule marks the most sweeping changes to the HIPAA Privacy and Security Rules since they were first implemented,” HHS Office for Civil Rights Director Leon Rodriguez said in a statement.   “These changes not only greatly enhance a patient’s privacy rights and protections, but also strengthen the ability of my office to vigorously enforce the HIPAA privacy and security protections, regardless of whether the information is being held by a health plan, a health care provider, or one of their business associates.”

These and other HIPAA changes can be viewed here.

Health IT Summit Series - Focus: CYBER-SECURITY

Get the latest information on Cyber-Security, and attend other valuable sessions at this two-day, intimate event bringing together C-level, physician, practice management and IT decision makers for strategy discussions, knowledge exchange, and one-on-one meetings.

Boston, June 23-24   |   Denver, July 12-13
Topics

News

Sansum Clinic Recognized for Reaching HIMSS Stage 6 for Ambulatory EHR

August 23, 2016
Santa Barbara, Calif.-based Sansum Clinic has been recognized for achieving Stage 6 on the EMR Adoption Model, or EMRAM, as designated by HIMSS Analytics.

ONC Releases 2017 Draft Interoperability Standards Advisory

August 23, 2016
The Office of the National Coordinator for Health Information Technology (ONC) has issued its draft Interoperability Standards Advisory (ISA) for 2017 for public comment.

Survey: Hospital IT Execs Fearful of Mobile Security Threats

August 23, 2016
More than eight in 10 (82 percent) hospitals surveyed by Spyglass Consulting Group expressed grave concerns about their ability to support and protect mobile devices, patient data, and the hospital’s technology infrastructure as a result of the growing threat of cybersecurity attacks.

CommonWell Members Give Patients Access to their Health Data

August 23, 2016
The CommonWell Health Alliance announced today that members will be giving patients access to their health data for the first time via the CommonWell network.

Southern California Health Centers Receive $1.5 Million HHS Grant to Improve Health IT Adoption

August 22, 2016
Health Centers Partners of Southern California, a consortium of community health centers in San Diego, Riverside and Imperial counties, received a $1.5 million federal grant to improve patient care through the use of technology.

HHS Delivers Telehealth Progress Report to Congress

August 22, 2016
Following up on a Congressional request, HHS has issued a report providing an update on the department’s current telehealth efforts, largely focusing on how delivery system reform initiatives may increase its use.

Apple Has Acquired Personal Health Data Startup Gliimpse

August 22, 2016
Apple has expanded its investment in digital health with the acquisition of personal health data startup Gliimpse, which occurred earlier this year, according to Fast Company reports.

Mayo Clinic Expands Emergency Telemedicine Services

August 22, 2016
Rochester, Minn.-based Mayo Clinic is implementing a new telemedicine strategy and will converge its emergency telemedicine practice in order to provide scalable, standardized services across its nationwide telemedicine enterprise.

OCR Announces Initiative to Focus Investigations on Smaller Data Breaches

August 22, 2016
As healthcare organizations of all sizes are impacted by data theft, ransomware and privacy violations, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) plans to devote more resources to investigating smaller breaches.

CMS to End ICD-10 Grace Period on October 1

August 22, 2016
After announcing last year that it would not deny Medicare physician claims for 12 months as long as the ICD-10 code was “from the right family,” the CMS has said that the grace period for healthcare providers will expire on Oct.1, 2016.

Study: Socioeconomic Digital Divide Remains in Personal Health Record Use

August 19, 2016
More patients are using personal health records (PHRs), yet there are socioeconomic disparities in the adoption of PHRs and patient portals to access health records, according to a study published in the American Journal of Managed Care.

NIH Survey Respondents Give Positive Feedback to Precision Medicine Cohort Program

August 19, 2016
A majority of respondents to a recent National Institutes of Health (NIH) survey said they would likely participate in the NIH's Precision Medicine cohort program.

HHS Awards $100 Million to Improve Health Center Quality

August 19, 2016
The U.S. Department of Health and Human Services (HHS) has awarded more than $100 million in grants to 1,304 health centers to invest in healthcare quality improvement efforts that engages patients and improves care coordination.

Cleveland’s University Hospitals Names CIO

August 19, 2016
Cleveland-based University Hospitals (UH) has hired Joy Grosser as chief information officer. She will join UH Sept. 12 after serving as vice president and CIO at 17-hospital UnityPoint Health in West Des Moines, Iowa, for six years.

Five University of Maryland Medical System Hospitals Reach EMRAM Stage 6

August 18, 2016
Five University of Maryland Medical System hospitals have achieved Stage 6 on the EMR Adoption Model, or EMRAM, as designated by HIMSS Analytics.

Pages