Skip to content Skip to navigation

BREAKING: HHS Releases HIPAA Update

January 17, 2013
by Gabriel Perna
| Reprints

The U.S. Department of Health and Human Services (HHS) has released an update to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), aiming to better protect patient privacy and safeguard patients’ health information in the digital age, according to HHS Secretary Kathleen Sebelius. 

The changes to HIPAA, according to HHS, are a bit consumer-focused. For instance, patients can now ask for a copy of their electronic medical record in an electronic form. Furthermore, HHS is allowing individuals the ability to tell their provider to not share information about their treatment with their health plan. There are also limits on how your health information can be used and disclosed for marketing and fundraising purposes. It also has forbidden the sale of a patients’ health information without their permission.

According to HHS, this HIPAA update will also expand the legislation to include greater focus and requirements of business associates of providers, payers, and other healthcare organizations that receive protected health information (PHI). HHS cites the fact that many of the largest data breaches in the past have been due to third-party mishap. As a result, penalties have been increased for noncompliance based on the level of negligence with a maximum penalty of $1.5 million per violation.

“This final omnibus rule marks the most sweeping changes to the HIPAA Privacy and Security Rules since they were first implemented,” HHS Office for Civil Rights Director Leon Rodriguez said in a statement.   “These changes not only greatly enhance a patient’s privacy rights and protections, but also strengthen the ability of my office to vigorously enforce the HIPAA privacy and security protections, regardless of whether the information is being held by a health plan, a health care provider, or one of their business associates.”

These and other HIPAA changes can be viewed here.

Health IT Summit Series - Focus: CYBER-SECURITY

Get the latest information on Cyber-Security, and attend other valuable sessions at this two-day, intimate event bringing together C-level, physician, practice management and IT decision makers for strategy discussions, knowledge exchange, and one-on-one meetings.

San Francisco, April 5-6   |   Cleveland, April 19-20
Topics

News

New Legislation Introduced to Expand Use of Telehealth Under Medicare

February 3, 2016
Senator Brian Schatz (D-Hawaii) introduced bipartisan legislation Wednesday that would expand the use of telehealth and remote patient monitoring (RPM) services under Medicare with the goal of cost savings and quality care.

IDC Report: Providers’ IT Budgets are Growing in Post-EHR Era

February 3, 2016
While 40 percent of healthcare providers reported that their IT budgets are still growing, only 25 percent that reported growing budgets attribute growth to electronic health records (EHRs), providing evidence that the post-EHR era is upon us, according to a new IDC Health Insights report.

CMS Issues Guidance on MU Hardship Exemption Process, Extends Comment Period on Quality Reporting

February 2, 2016
The Centers for Medicare & Medicaid Services (CMS) issued guidance to the Medicare Electronic Health Record (EHR) Incentive Program hardship exemption process, specifically clarifying that providers are not required to submit documentation with the new hardship application form for the 2017 payment adjustment.

BREAKING: The 2016 HCI 100 is Now Open for Submissions

February 2, 2016
Is your company one of the 100 leading healthcare IT companies? HCI will once again rank the top vendors with the highest revenues derived from healthcare IT products and services earned in the U.S. based on revenue information from the previous year.

State-by-State Telemedicine Report Cards Shows Mixed Results

February 1, 2016
While more states have adopted policies improving coverage and reimbursement for telemedicine services, there is also a trend with state medical boards imposing more restrictive regulations which could be a barrier to more widespread use of telemedicine, according to the American Telemedicine Association’s latest state-by-state telemedicine report cards.

CMS Issues Final Rule that Allows Use of Telehealth for Face-to-Face Medicaid Encounters

February 1, 2016
The Centers for Medicare & Medicaid Services (CMS) last week published a final rule that allows physicians to use telehealth as a face-to-face encounter with Medicaid patients, which is required before the authorization of home health services.

Hacking Accounted for 98 Percent of Healthcare Data Breaches in 2015, Report Says

February 1, 2016
While lost and theft of employee devices accounted for the majority (68 percent) of healthcare data breaches in 2014, last year was a different story, with 98 percent of breaches due to hacking, according to a Bitglass Healthcare Breach Report.

IBM Watson to Take On Heart Health

February 1, 2016
The American Heart Association (AHA), IBM Watson and Denver, Colo.-based vendor Welltok are teaming up on the creation of a workplace health solution to improve heart health.

Time for Pioneering Change: The 2016 Healthcare Informatics Innovator Awards Winning Teams

February 1, 2016
It is our privilege once again this year to honor teams that are at the absolute tip of the spear in forging transformative change, through this year’s Healthcare Informatics Innovator Awards Program.

Theranos Flagged by CMS for “Condition-Level Deficiencies” In Labs

January 29, 2016
The Centers for Medicare & Medicaid Services (CMS) sent a letter to blood analysis startup Theranos citing “deficient practices” at the company’s northern California lab which pose “immediate jeopardy to patient health and safety.”

Majority of Patients Trust Healthcare Providers with Personal Information, Study Finds

January 29, 2016
Cybersecurity is a growing concern for healthcare organizations, yet despite major breaches this past year, 74 percent of respondents to a survey said they trusted healthcare providers to handle personal information responsibly, according to the TRUSTe/National Cyber Security Alliance U.S. Consumer Privacy Index.

CMS Reveals Methodology for its Hospital Compare Website

January 29, 2016
The Centers for Medicare & Medicaid Services (CMS) has revealed the methodology it uses to calculate and display star ratings for its Hospital Compare website.

Survey: ACOs Challenged by Health IT Integration, Few Use Single EHR

January 29, 2016
Many accountable care organizations (ACOs) are wrestling with challenges related to health information technology integration and the effectiveness of health IT support tools, according to a study by the Pharmacy Benefit Management Institute.

SCIO Health Analytics Acquires Competitor Clear Vision

January 28, 2016
SCIO Health Analytics has acquired Westlake Village, Calif.-based Clear Vision Information Systems, a vendor that specializes in risk adjustment and quality metric analytics for health plans and providers. The financial terms of the deal were not disclosed.

Epic Tops Best in KLAS for Sixth Straight Year

January 28, 2016
The 2015/2016 Best in KLAS Software and Services report, released today by Orem, Utah-based KLAS, named the top-performing companies within various market segments based on customer feedback, and once again Epic earned the ranking of number-one Overall Software Suite.

Pages