The Department of Health and Human Services (HHS) has issued a proposed rule implementing changes to the HIPAA Privacy Rule’s standard for accounting of disclosures of protected health information. This proposed rule addresses the changes required by the HITECH Act, which requires HIPAA covered entities and business associates to account for disclosures of protected health information made through an electronic health record that are for treatment, payment, and health care operations purposes.
The proposed rule divides the accounting rights into two distinct individual rights.
Read more about the proposed rule on Hogan Lovells Chronicle of Data Protection.