Tag Archives: HIPAA Omnibus rule

HEALTH REFORM: HIPAA Omnibus Rule’s Impact on Notices of Privacy Practices

This health reform alert summarizes the key changes to the Notice of Privacy Practices (“NPP”)[1] requirements in the revised Health Insurance Portability and Accountability Act (“HIPAA”) regulations (the “Omnibus Rule”)[2] as well as what covered entities need to do to be compliant.[3] Because many covered entities may have modified their NPPs based on the Notice of Proposed Rulemaking issued on July 14, 2010 (“NPRM”),[4] this alert also details the similarities and differences between the NPRM and the Omnibus Rule related to NPPs. In addition, Table 1 of this alert provides a quick summary of the NPRM proposals adopted—or not adopted—by the Omnibus Rule.

Read full article

What the HIPAA Omnibus Rule Means for Health Technology Companies

On January 25, 2013, the Department of Health and Human Services (“HHS”) published in the Federal Register the highly anticipated Omnibus Rule, which strengthens and amends existing regulations in the HIPAA Privacy and Security Rules. The rule will significantly affect health technology companies, including telehealth companies, data centers, and personal health record vendors, with an estimated total cost of compliance of 114 million to 225.4 million dollars. The rule will be effective on March 26, 2013, but affected parties have until September 26, 2013 to comply with most provisions.

Read full article