OCR: Breach Notification Final Rule Under Review
Several Congressmen objected to the breach notification interim final rule’s “harm threshold” provision, which allows covered entities to perform a risk assessment to determine the level of harm in a potential breach.
Essentially, it’s one way those entities can avoid breach notification. Congress did not write this provision into HITECH.
Asked if the withdrawal from OMB review had anything to do with the harm threshold, OCR wrote, “No further details are available at this time as the final rule withdrawn from OMB review is considered to be part of pre-decisional agency deliberations on regulations.”
OCR wrote on its website it intends to publish a final rule in the coming months.
Dom Nicastro is a contributing writer. He edits the Medical Records Briefings newsletter and manages the HIPAA Update Blog.
- Providers Lag as Consumers Set Agenda
- ICD-10 Delay Alters Provider, Vendor Prep
- Esther Dyson Launches Population Health Challenge
- Crisis Spurs Healthcare Payment Reform in Arkansas
- Payment Reform Naysayers 'Better Wake Up'
- Look Beyond Nurse-Patient Ratios
- HIT Leaders Want Flexibility, Transparency from Next HHS Chief
- As Hospitalist Patient Loads Rise, So Do Hospital Costs
- Reduce Readmissions by Activating Patients to Do 'Self-Care'
- Hospital Groups Back NQF Report on Patient Sociodemographics