LINKS

HHS AND OCR      

 

ENFORCEMENT INFORMATION:
The Office for Civil Rights enforces the HIPAA Privacy Rule, which protects the privacy of individually identifiable health information; the HIPAA Security Rule, which sets national standards for the security of electronic protected health information; and the confidentiality provisions of the Patient Safety Rule, which protect identifiable information being used to analyze patient safety events and improve patient safety.
http://www.hhs.gov/ocr/privacy/hipaa/enforcement/index.html

 

HIPAA Privacy: http://www.hhs.gov/ocr/privacy/hipaa/understanding/index.html

 

HIPAA Security: http://www.hhs.gov/ocr/privacy/hipaa/administrative/securityrule/index.html

 

NPRM to Implement HITECH Act Provisions:
http://www.hhs.gov/ocr/privacy/hipaa/understanding/coveredentities/hitechnprm.html

 

NPRM HITECH Breach Notification:(Currently in Effect)  http://www.hhs.gov/ocr/privacy/hipaa/understanding/coveredentities/breachnotificationifr.html

 

Breaches Affecting over 500 People: http://www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/postedbreaches.html

 

Guidance on Risk Analysis: http://www.hhs.gov/ocr/privacy/hipaa/administrative/securityrule/rafinalguidance.html

 

---------------------------------------------------------------------------------------------------------

 

OCR YOUTUBE VIDEOS CHANNEL:

 

OCR has created youtube training.  These are great for health care providers and patients.  These are short and I would watch all of them. Since my original post, there are three new videos. 

• Right to Access and Amend Your Records
• Electronic Health Records: Privacy and Security
• Treatment, Payment, and Healthcare Operations

The OCR YOUTUBE CHANNEL

 

• HHS OCR - HIPAA Security Rule
   
• HHS OCR - Communicating with Family, Friends and Others Involved in Your Care
   
• HHS OCR - Explaining the Notice of Privacy Practice
   
• HHS OCR - Your Health Information, Your Rights

-------------------------------------------------------------------------------------------------------------------------
STATE BREACH NOTIFICATION LAWS:

 

NATIONAL CONFERENCE OF STATE LEGISLATURES

 

Forty-six states, the District of Columbia, Puerto Rico and the Virgin Islands have enacted legislation requiring notification of security breaches involving personal information.

 

When designing your breach notification process, most states also have breach legislation. Research your state here.

 

http://www.ncsl.org/issues-research/telecom/overview-security-breaches.aspx