FTC issues final breach notification rule for electronic health information
HIM-HIPAA Insider, August 24, 2009
The Federal Trade Commission issued its final rule that requires some Internet-based businesses to notify consumers when they've had a breach of their PHI, according to an FTC press release issued Monday, August 17.
The rule was issued under the mandate from Congress in the American Recovery and Reinvestment Act of 2009. It applies to both vendors of personal health records – which "provide online repositories that people can use to keep track of their health information" – and entities that offer third-party applications for personal health records, according to the release.
The rule requires the Web-based entities to notify the FTC of a breach. The FTC offered a standard form for such notification.
See also the Federal Register notice.
- Hackers demand second ransom after hospital pays
- Differentiate between types of wound debridement
- Note similarities and differences between HCPCS, CPT® codes
- Complications from immobility by body system
- Seven savvy tips for coding sepsis and SIRS
- Fracture coding in ICD-10-CM requires greater specificity
- What does case-mix index mean to you?
- Joint Commission deletes more than 130 requirements, including medical record requirements
- Don’t forget the three checks in medication administration
- Your Hospital's Financial Statements: How Management Keeps Score