Tuesday, October 27, 2009

AHA urges improvements to HITECH breach notification rule

WASHINGTON – The American Hospital Association would like to see some changes in the proposed federal rule for patient medical information breaches.
In a letter sent Friday to Health and Human Services Secretary Kathleen Sebelius, AHA officials said thay are endorsing the rule, but calling for "further improvements" to make it better.
The interim final rule implements the requirements from the Health Information Technology for Economic and Clinical Health (HITECH) Act for hospitals and other Health Insurance Portability and Accountability Act (HIPAA) covered entities and their business associates to notify individuals when a breach of their unsecured personal health information occurs.
AHA officials would like the HHS to identify additional situations in which the department considers the privacy or security of information not to be compromised and, therefore, would not trigger the obligation to provide notice under the breach notification regulations.

No comments: