Health Information Privacy and Security Strengthened through New Proposed Rule

The Department of Health and Human Services (“HHS”) today announced a notice of proposed rulemaking regarding HIPAA Privacy and Security. The proposed rule is issued in connection with the amendments and expansion to HIPAA made as part of the Health Information Technology and Economic Clinical Health Act (the “HITECH Act”), enacted as part of the American Recovery and Reinvestment Act of 2009.

The proposed rule is intended to strengthen and expand enforcement of HIPAA Privacy, Security and Enforcement Rules by granting broader patient rights and stronger protections when business associates handle individually identifiable health information.

HHS also launched today a privacy website, designed to inform the public regarding existing HHS health information privacy efforts and policies. HHS also announced that its website for HIPAA breach notifications is to be updated and will now include a search function and summaries of past health information privacy breaches.

For more information regarding HIPAA or health information privacy matters, please contact Abby Pendleton, Esq. or Jessica L. Gustafson, Esq. at (248) 996-8510.

Contact Information