Tougher New HIPAA Rules and Regs Go into Effect


The Department of Health and Human Services (HHS) released new regulations in January 2013 that made important changes to the privacy and security requirements under the Health Insurance Portability and Accountability Act (HIPAA). These new regulations, known as the HIPAA Omnibus Rule, implement many of the provisions of the Health Information Technology for Economic and Clinical Health (HITECH) Act. Covered entities have until September 23 to comply with these changes.

Practices will, at minimum, need to review and update their business associate agreements, office privacy and security policies and notice of privacy practices.

CPMA Members can find materials to help them comply with the new regulations and requirement in the Compliance Center under HIPAA in the Members' area of the CPMA website.