OCR: Breach Notification Final Rule Under Review
Several Congressmen objected to the breach notification interim final rule’s “harm threshold” provision, which allows covered entities to perform a risk assessment to determine the level of harm in a potential breach.
Essentially, it’s one way those entities can avoid breach notification. Congress did not write this provision into HITECH.
Asked if the withdrawal from OMB review had anything to do with the harm threshold, OCR wrote, “No further details are available at this time as the final rule withdrawn from OMB review is considered to be part of pre-decisional agency deliberations on regulations.”
OCR wrote on its website it intends to publish a final rule in the coming months.
Dom Nicastro is a contributing writer. He edits the Medical Records Briefings newsletter and manages the HIPAA Update Blog.
- CMS Seeks to 'Rapidly Reduce' Medicare Spending with $1B in Grants
- Building a Better Healthcare Board
- Case Study: Advance Care Conversations
- Patient Harm Data to Remain on Medicare's Hospital Compare Site
- Quiet ORs Better for Patient Safety
- Hard-Nosed About Physician Teamwork
- Hospital Pricing Data Dump Won't Hurt You, Yet
- CMS Releases Hospital Pricing Data
- Tavenner Confirmed as CMS Administrator
- Evidence-Based Practice and Nursing Research: Avoiding Confusion