Intelligence Unit
Special Reports
Special Events
Subscribe/Buy
Sponsored
Departments
- Leadership
- Finance
- Technology
- Physicians
- Community Hospitals
- Health Plans
- Marketing
- Quality
- Nursing
- HR
Follow Us
Feds: Business Associate HITECH Provisions Forthcoming
OCR reminded covered entities and BAs that two interim final rules implementing HITECH provisions have already been issued and are currently in effect: enforcement and breach notification.
New civil money penalty amounts apply to HIPAA privacy and security rule violations occurring after February 17, 2001. Covered entities and BAs must comply now with breach notification obligations for breaches that are discovered on or after September 23, 2009.
OCR has said it would use its "enforcement discretion" not to impose fiscal sanctions with regard to breaches discovered before February 22, 2010.
"Since that date has passed, OCR will enforce the Breach Notification Interim Final Rule, including with the possible imposition of sanctions, as it does with the HIPAA Privacy and Security Rule requirements," OCR added.
Dom Nicastro is a senior managing editor at HCPro, Inc. in Danvers, MA. He edits the Briefings on HIPAA newsletter and manages the HIPAA Update Blog. E-mail him at dnicastro@hcpro.com.
- Urologists 'Outraged' Over PSA Test Challenge
- New Facebook Page Gathers Stories of Medical Harm
- Luxury Hospital Facilities Put Patient Experience First
- Five Hospitals Share Three Secrets to Improve Knee Surgery Outcomes
- Heartland Health Joins Mayo Clinic Network
- Beleaguered Fairview Health CEO to Retire in July
- Challenging Physicians to Help Improve the ED
- Health Insurance Exchanges Put Defined Benefits to the Test
- For hospitals and insurers, new fervor to cut costs
- The Power of Plugged-In Physicians
Comments are moderated. Please be patient.