Skip to content Skip to navigation

BREAKING: HHS Releases HIPAA Update

January 17, 2013
by Gabriel Perna
| Reprints

The U.S. Department of Health and Human Services (HHS) has released an update to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), aiming to better protect patient privacy and safeguard patients’ health information in the digital age, according to HHS Secretary Kathleen Sebelius. 

The changes to HIPAA, according to HHS, are a bit consumer-focused. For instance, patients can now ask for a copy of their electronic medical record in an electronic form. Furthermore, HHS is allowing individuals the ability to tell their provider to not share information about their treatment with their health plan. There are also limits on how your health information can be used and disclosed for marketing and fundraising purposes. It also has forbidden the sale of a patients’ health information without their permission.

According to HHS, this HIPAA update will also expand the legislation to include greater focus and requirements of business associates of providers, payers, and other healthcare organizations that receive protected health information (PHI). HHS cites the fact that many of the largest data breaches in the past have been due to third-party mishap. As a result, penalties have been increased for noncompliance based on the level of negligence with a maximum penalty of $1.5 million per violation.

“This final omnibus rule marks the most sweeping changes to the HIPAA Privacy and Security Rules since they were first implemented,” HHS Office for Civil Rights Director Leon Rodriguez said in a statement.   “These changes not only greatly enhance a patient’s privacy rights and protections, but also strengthen the ability of my office to vigorously enforce the HIPAA privacy and security protections, regardless of whether the information is being held by a health plan, a health care provider, or one of their business associates.”

These and other HIPAA changes can be viewed here.

Health IT Summit Series - Focus: CYBER-SECURITY

Get the latest information on Cyber-Security, and attend other valuable sessions at this two-day, intimate event bringing together C-level, physician, practice management and IT decision makers for strategy discussions, knowledge exchange, and one-on-one meetings.

Boston, June 23-24   |   Denver, July 12-13
Topics

News

Survey: Payers, Providers Project Value-Based Reimbursement Will Eclipse Fee-for-Service by 2020

June 21, 2016
According to the results of a new survey, value-based payment has hit the tipping point, with bundled payment projected to grow rapidly in the next five years and as payers’ network strategies are changing, getting narrower and more selective. The survey results also reveal that payers and hospitals are somewhat struggling to scale these complex strategies.

HHS Announces $100M in Funding to Help Small Practices with MACRA

June 21, 2016
The Department of Health and Human Services (HHS) has announced $20 million each year over the next five years to fund on-the-ground Medicare Access and CHIP Reauthorization Act of 2015 (MACRA) training and education for Medicare clinicians in individual or small group practices.

AMA CEO: “Digital Snake Oil” Remarks Have Initiated Much-Needed Discussion

June 20, 2016
The American Medical Association’s (AMA) CEO and executive vice president, James Madara, M.D., discussed further his recent comments about digital health products being “snake oil of the early 21st century.”

Provider Organizations Call on CMS to Reconsider Expanded Quality Reporting Requirements

June 20, 2016
A number of healthcare provider organizations are calling on the Center for Medicare & Medicaid Services (CMS) to reconsider requiring hospitals to submit 15 electronic clinical quality measures (eCQM) in 2017.

HHS Agency Awards $250K Grant to Support Interstate Medical Licensure Compact

June 20, 2016
The Health Resources and Services Administration (HRSA) within HHS will provide $250,000 annually for three years to help state medical boards implement the administrative and technical infrastructure of the new Interstate Medical Licensure Compact.

Close to 150,000 Patient Medical Records Potentially Affected by Bizmatics Data Breach

June 17, 2016
A healthcare provider in Colorado, Vincent Vein Center, is the latest organization to notify the HHS Office of Civil Rights (OCR) about a breach of protected health information stemming from a malicious hacker attacking Bizmatics’ data servers.

Survey: Adoption of Health IT to Improve Care Coordination Remains Sluggish

June 17, 2016
Despite the promise of health IT to improve care coordination, there has been sluggish progress in the use of health IT to connect doctors and patients, according to a new survey report from Nielsen Strategic Health Perspectives.

Former CNO Alleges She was “Forced Out” After Raising Concerns about Hospital’s EMR

June 17, 2016
A former chief nursing officer (CNO) at California-based Sonoma West Medical Center has filed a lawsuit alleging she was illegally forced out of her position after she raised concerns about the hospital’s electronic medical records (EMR) system, according a report in The Press Democrat.

Risk Stratification Models Must Include Social Determinants of Health, New Report Finds

June 17, 2016
Current risk stratification models are not up to the task of addressing the future needs of healthcare organizations, and should be adding data about patients’ social determinants of health, according to a new report from Chilmark Research.

Cerner Retains Largest Market Share in EMR Industry, Report Says

June 16, 2016
Cerner continues to hold the largest market share of the $27 billion electronic medical records (EMR) market, thanks to its acquisition of Siemens Healthcare’s EMR business last year, according to a new report from Kalorama Information.

Research: HIE Policies Such as Automatic Query, Patient Consent, Help Increase Volume of Data Exchanged

June 16, 2016
Automatic querying and limited consent requirements are organizational health information exchange (HIE) policy decisions that impact the volume of exchange, and ultimately the information available to providers, according to new research published in the Journal of the American Medical Informatics Association.

AHA: Mental Health Reform Bill Does Not Go Far Enough to Modernize “Part 2,” Eliminate Barriers to Data Sharing

June 16, 2016
The Helping Families in Mental Health Crisis Act, H.R. 2646, passed the U.S. House Energy and Commerce Committee this week and will move to the House floor, but the American Hospital Association voiced disappointment that the bill did not address patient privacy laws in 42 CFR Part 2.

Report: Healthcare Data Breach Costs Remain Highest Among Industries

June 16, 2016
The average global cost of a data breach in the healthcare industry is $355 per stolen or lost record, more than twice the average global cost across all other industries, according to the Ponemon 2016 Cost of Data Breach study.

URMC Telemedicine Program Aims to Extend Parkinson’s Care Across NYS

June 16, 2016
A new program launched by neurologists at University of Rochester Medical Center (URMC) will aim to expand access to care across New York State.

OhioHealth Doctors Hospital Hits EMRAM Stage 7

June 15, 2016
OhioHealth Doctors Hospital, based in Columbus, has been awarded with Stage 7 EMRAM designation by HIMSS Analytics.

Pages