Health Information Management

Red Flags rules: FTC enforcement date finally arrives . . . at least for now

HIM-HIPAA Insider, December 22, 2009

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

The Federal Trade Commission (FTC) now says it will enforce the Red Flags rule June 1, 2010, seven months after its previous deadline of November 1, 2009.

Nonetheless, providers subject to the rule’s requirement to develop a program that mitigates the risk of identity theft within their organizations must establish their programs now.

“As with the [Health Information Technology for Economic and Clinical Health] Act’s enhanced privacy and security requirements, some hospitals are completely on board, but others are lagging,” says Kate Borten, CISSP, CISM, president of the Marblehead (MA) Group. “I think the reasons are usually a combination of lack of resources, such as people and money, and lack of a high-level leader taking a strong stand.”

Note: For more information, visit the HCPro Web site. Subscribers toHealth Information Compliance Insider have access to this article in the December issue of the newsletter.



Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

Most Popular