HIPAA Omnibus Rule Enforcement Begins Today
by Kim C. Stanger
Although the HIPAA omnibus rule was issued in January 2013, enforcement begins today, September 23, 2013. If they have not already done so, health care providers, health plans, and their "business associates" need to put in place the required policies, processes and safeguards to comply with the new rules. Failure to comply may result in fines ranging from $100 to $50,000 per violation. Penalties of $10,000 to $50,000 are mandatory if the entity acts with willful neglect, which may include failure to have required policies or safeguards. Compliance is more important than ever given increased government enforcement and the lower standard for self-reporting privacy breaches.
If you would like more information or guidance concerning compliance with the new HIPAA rules (including a checklist for compliance), please visit our website, http://www.hhhealthlawblog.com/.
This publication is designed to provide general information on pertinent legal topics. The statements made are provided for educational purposes only. They do not constitute legal or financial advice nor do they necessarily reflect the views of Holland & Hart LLP or any of its attorneys other than the author(s). This publication is not intended to create an attorney-client relationship between you and Holland & Hart LLP. Substantive changes in the law subsequent to the date of this publication might affect the analysis or commentary. Similarly, the analysis may differ depending on the jurisdiction or circumstances. If you have specific questions as to the application of the law to your activities, you should seek the advice of your legal counsel.