![]() ![]() The HIPAA Breach Notification Rule – 45 CFR §§ 164.400-414 – requires covered entities to report breaches of unsecured electronic protected health information and physical copies of protected health information. Summary of the HIPAA Breach Notification Rule ![]() With this in mind, we have compiled a summary of the HIPAA breach notification requirements for covered entities and business associates. The failure to comply with HIPAA breach notification requirements can result in a significant financial penalty in additional to that impose for the data breach itself. The issuing of notifications following a breach of unencrypted PHI is an important element of HIPAA compliance. Business associates that have only just started providing a service to Covered Entities may similarly be unsure of the reporting requirements and actions that must be taken following a breach. While most HIPAA covered entities should understand the HIPAA breach notification requirements, organizations that have yet to experience a data breach may not have a good working knowledge of the requirements of the Breach Notification Rule. Additionally, the organization must develop a breach response plan that can be implemented as soon as a breach of unsecured PHI is discovered. The HIPAA breach notification requirements are important to know if an organization creates, receives, maintains, or transmits Protected Health Information (PHI). What are the HIPAA Breach Notification Requirements?
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |