The United States Department of Health and Human Services recently issued significant changes to the HIPAA regulations. All entities and persons that are subject to the requirements of HIPAA must comply with the new regulations by September 23, 2013. These changes address a wide range of issues, including the following:

Business Associates, Business Associate liability, and BAAs;Breaches of PHI and the notification standard;Use and disclosure of PHI for marketing and fundraising purposes;Individuals’ rights regarding electronic copies of health records and disclosure of information to health plans;Sale of PHI; Notice of privacy practices;Individual authorization to facilitate research and disclosure of child immunization proof to schools;Access to decedent information;Genetic information; andPenalties.

Please click here to read full article.