• Home
  • Blog
  • Contact
HIPAA ComplianceHIPAA Compliance
HIPAA ComplianceHIPAA Compliance
  • Home
  • Blog
  • Contact

HHS Secretary Sebelius Delegates Oversight and Enforcement of HIPAA Security Rule to OCR

August 4, 2009 HIPAA Law, Security No Comments

U.S. Health and Human Services (HHS) Secretary Kathleen Sebelius has delegated oversight and enforcement of the HIPAA Administrative Simplification Security Rule Standards for Protection of Electronic Protected Health Information to HHS’s Office of Civil Rights (OCR), effective July 27, 2009.  Since October 7, 2003, the Security Rule had been the responsibility of HHS’s Center for Medicare & Medicaid Services (CMS). OCR also has responsibility for the HIPAA Administrative Simplification Privacy Rule.  This delegation brings responsibility for administrative, technical, and physical standards for safeguarding of protected health information in each rule under one authority, and likely will facilitate enforcement of the HITECH Act breach, notification, and business associate security rule compliance provisions in the American Recovery and Reinvestment Act of 2009, signed by President Obama on February 17, 2009.

The Delegation of Authority was published in the August 4, 2009, Federal Register.

Tags: 2009administrativeAmerican Recovery and Reinvestment Act of 2009ARRAAugust 4breachbusiness associate security rule complianceCenter for Medicare & Medicaid ServicesCMSelectronic protected health informationEnforcementFebruary 17Federal RegisterHHSHIPAAHIPAA Administrative SimplificationHITECH ActJuly 27 2009notificationOCROctober 7 2003Office of Civil Rightsoversightphysical standardsPresident ObamaPrivacy RuleSecretary SebeliusSecurity RuleStandardstechnical
No Comments
Share
0

You also might be interested in

HIPAA Final Rule: Enforcement–Factors for Determining Civil Money Penalties for HIPAA Violations

Feb 25, 2013

February 25, 2013.  Today, we examine factors considered in determining[...]

Physical Safeguard Standard, Device and Media Controls: Disposal Implementation Specification-What to Do and How to Do It

May 19, 2009

In our series on the HIPAA Administrative Simplification Security Rule,[...]

Proposed Rule for Electronic Claims Attachments

Jan 19, 2009

DEPARTMENT OF HEALTH AND HUMAN SERVICES Office of the Secretary[...]

Leave a Reply Cancel Reply

Categories

  • 5010
  • American Recovery and Reinvestment Act
  • Enforcement
  • GINA
  • Health Care Reform
  • Health IT and HITECH
  • HIPAA Law
  • Identifiers
  • Meaningful Use
  • Privacy
  • Red Flags Rules
  • Security
  • Transactions & Code Sets
  • Uncategorized

Recent Posts

  • Contracting with Vendors that are NOT HIPAA Business Associates: Best Practices
  • HIPAA Breach: Who You Gonna Call?
  • Can I Be Sued for a HIPAA Violation?
  • Business Associate Agreements – a First Look at Indemnification
  • Gmail, Google Apps for Business HIPAA Business Associate Agreements

Archives

Contact Us

We're currently offline. Send us an email and we'll get back to you, asap.

Send Message
HIPAA- Health Insurance Portability Accountability Act

© 2023 · hipaa.com

Prev Next