The webinar is co-sponsored by the CDC’s Public Health Law Program and the Network for Public Health Law.
A number of provisions in the Health Insurance Portability and Accountability Act (HIPAA) mandate adoption of federal privacy protections for health information
and data. The HIPAA Privacy Rule protects the privacy of individually identifiable health information; the HIPAA Security Rule sets national standards for the security of electronic protected health information; and the HIPAA Breach Notification Rule requires covered entities and business associates to provide notification following a breach of unsecured protected health information. The U.S. Department of Health and Human Services, Office for Civil Rights (OCR) has oversight and enforcement responsibilities for these rules.
In this webinar, Iliana L. Peters, Health Information Privacy Specialist with the OCR, will discuss recent enforcement and policy developments with regard to the HIPAA Privacy, Security, and Breach Notification Rules, and will give insight into upcoming initiatives by OCR. Ms. Peters will talk about hybrid entities, recent guidance issued by OCR, current HIPAA enforcement actions and trends, new areas of focus in health privacy and security and business associate relationships under the recently promulgated HIPAA Omnibus Rule.
- Define hybrid entity and list the compliance responsibilities of hybrid entities.
- Summarize major changes to the HIPAA Privacy, Security, and Breach Notification Rules under the recently promulgated HIPAA Omnibus Rule.
- Identify resources for additional guidance on HIPAA and HITECH.
Akshara Menon, JD, MPH
Senior Legal Analyst, Public Health Law Program
Iliana L. Peters, JD, LLM
US Department of Health and Human Services, Office of Civil Rights