HIPAA

Recent HHS Guidance Underscores the Importance of HIPAA Compliance

Everyone who participates in the United States healthcare system either as a patient, provider business associate, or subcontractor either knows or should know about the Health Insurance Portability and Accountability Act of 1996, Pub. L. 104-191 (Aug. 21, 1996). Industry participants should also have implemented requisite standards espoused by the Privacy Rule, Security Rule, Breach Notification Rule and the Health Information Technology for Economic and Clinical Health Act, Pub. L. 111-5 (Feb. 17, 2009).

Handling Requests to Access PHI under HIPAA

HIPAA provides patients with fundamental rights to access, inspect, and obtain a copy of their health information for as long as the information is maintained by the healthcare provider regardless of the date created, format of the PHI or where the PHI originated. In responding to these requests, providers should be aware of the requirements under the HIPAA Privacy Rule.