March 19, 2013
On Jan. 17, 2013, the federal government released the long-awaited HITECH Act Omnibus Final Rule, clarifying the HIPAA compliance obligations of healthcare providers, health plans and their business associates. The HITECH Act significantly expanded the reach of HIPAA by imposing compliance obligations on a broad array of downstream entities not traditionally viewed as healthcare companies, by requiring the reporting of data breaches, and by significantly increasing the civil and criminal penalties for violations of HIPAA.
The HITECH Act also changed the enforcement climate. Recent investigations by the Office for Civil Rights (OCR) signal a dramatic shift in the government’s approach to enforcement, from a reactive approach focused on education to a proactive approach in which covered entities and business associates of all sizes are expected to achieve and sustain compliance. In addition, the OCR has implemented a new audit program, through which the HIPAA compliance status of selected covered entities and business associates will be evaluated.
This presentation is the first in a series of complimentary webinars sponsored by McGuireWoods LLP regarding HIPAA and the HITECH Final Rule. A replay of this event was broadcast on March 27.
Our programs are intended for the benefit of our clients and contacts and we reserve the right to refuse any registration at our sole discretion.