[ Thursday, June 30, 2011 ]


New Texas HIPAA law: The Texas legislature has passed and the governor signed some new privacy rights provisions. Basically, it expands the definition of "covered entity" to any person or entity who handles medical information, requires employee training within 60 days of hiring and at least every 2 years, require copies of electronic records within 15 business days of a request, and prohibits the sale of PHI. It also expands the potential fines for a Texas data breach (and could allow for double-dipping on fines: $1.5 million for violating HIPAA, $1.5 million for violating the Texas statute), and makes it a felony to perpetrate identity theft by electronic device when the information or data accessed or stolen is PHI.

Jeff [4:19 PM]

Comments: Post a Comment
http://www.blogger.com/template-edit.g?blogID=3380636 Blogger: HIPAA Blog - Edit your Template