 |
HIPAA Privacy Rule
Updated May 14, 2003
Among other things, the privacy rule mandates that covered entities: limit disclosure of patients' protected health information (PHI) to the "minimum necessary" number of individuals; develop a notice of privacy practices for patients to review and sign; and take reasonable precautions to ensure the confidentiality of PHI. Patients also have the right to request their medical records and amend them if found to be in error. Medscape's editors have put together this collection of news, conference reports, and related links to government and private organizations to help readers interpret this important law. Recent NewsPractical Steps Bring Practices Closer to HIPAA Compliance 3/31/03 Lagging HIPAA Compliance a 'Serious Concern' 3/28/03 Federal Regulators Worry About Transaction Compliance 3/28/03 Conference ReportsDeadlines Loom While Compliance Lags Instant PollVoice Your Opinion Discuss This TopicDiscuss HIPAA compliance issues with your colleagues and exchange ideas for getting there faster. Join the discussion Related Resource CenterHIPAA Compliance Related LinksMedical Privacy -- National Standards to Protect the Privacy of Personal Health Information OCR Guidance Explaining Significant Aspects of the Privacy Rule HIPAA Toolkit on CD-ROM HIPAA Resources Privacy Complaint Monitoring Initiative, Model Complaint Form Quarterly HIPAA Compliance Survey Results: Winter 2003 
|
|
|
Monday, April 14, was the date that the medical privacy rule took effect under the Health Insurance Portability and Accountability Act (HIPAA). That means big changes for physicians, hospitals, health plans, and other "covered entities" that transmit patients' health information electronically, all of whom are required to comply. (Small health plans have one additional year.) Enforcement of the rule will be overseen by the US Department of Health and Human Services Office of Civil Rights, which has said it will take a "complaint-driven" approach to oversight.