1 / 5

HIPAA/HITECH – The Final Omnibus Rule

HIPAA/HITECH – The Final Omnibus Rule. Grant Elliott CEO, Ostendio, Inc. What is the Final Omnibus Rule. Part of the HITECH Act, the Final Omnibus rule adds a number of additional provisions to the Privacy and Security protections within HIPAA. These include:

zuri
Download Presentation

HIPAA/HITECH – The Final Omnibus Rule

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. HIPAA/HITECH – The Final Omnibus Rule Grant Elliott CEO, Ostendio, Inc.

  2. What is the Final Omnibus Rule • Part of the HITECH Act, the Final Omnibus rule adds a number of additional provisions to the Privacy and Security protections within HIPAA. These include: • Business Associates become directly liable for compliance with certain Privacy and Security Rules' requirements • Individuals rights to receive electronic copes of their data are expanded • Additional enhancements to the Enforcement rule around willful neglect • Adopted changes to the tiered civil money penalty structure • Introduced “harm threshold” for Breach Notification • The final Omnibus Rule became effective March 23rd 2013, with Business Associates given 6 months to be compliant

  3. So how do I know if HIPAA Applies? http://ostendio.com/why-the-final-omnibus-rule-is-good-news-for-many-mobile-health-application-developers/ • Are you a Covered Entity i.e. a health plan, health care clearinghouse or a health care provider? • Are you a Business Associate i.e. you are operating on behalf of a Covered Entity or a Business Associate? • This is determined by who the user is ‘contracting’ with • Are you exchanging sensitive and identifiable health data with the Covered Entity i.e. PHI?

  4. 5 simple steps to secure your business http://ostendio.com/5-simple-steps-to-secure-your-business/ • Whether HIPAA applies or not you should always take steps to secure Sensitive data. Start by: • Assigning responsibility • Publishing policies even if they are just 1 paragraph • Set up a single place to store policy documents  • Training & Education • Enforce compliance – follow up!!!

  5. Contact Details Grant Elliott | CEO | Ostendio, Inc. Tel: +1 703 646 0304 E-mail: gelliott@ostendio.com Website: www.ostendio.com Facebook: www.facebook.com/ostendio Twitter: @ostendio

More Related