• Home
  • Blog
  • Contact
HIPAA ComplianceHIPAA Compliance
HIPAA ComplianceHIPAA Compliance
  • Home
  • Blog
  • Contact

HHS Secretary Sebelius Delegates Oversight and Enforcement of HIPAA Security Rule to OCR

August 4, 2009 HIPAA Law, Security No Comments

U.S. Health and Human Services (HHS) Secretary Kathleen Sebelius has delegated oversight and enforcement of the HIPAA Administrative Simplification Security Rule Standards for Protection of Electronic Protected Health Information to HHS’s Office of Civil Rights (OCR), effective July 27, 2009.  Since October 7, 2003, the Security Rule had been the responsibility of HHS’s Center for Medicare & Medicaid Services (CMS). OCR also has responsibility for the HIPAA Administrative Simplification Privacy Rule.  This delegation brings responsibility for administrative, technical, and physical standards for safeguarding of protected health information in each rule under one authority, and likely will facilitate enforcement of the HITECH Act breach, notification, and business associate security rule compliance provisions in the American Recovery and Reinvestment Act of 2009, signed by President Obama on February 17, 2009.

The Delegation of Authority was published in the August 4, 2009, Federal Register.

Tags: 2009administrativeAmerican Recovery and Reinvestment Act of 2009ARRAAugust 4breachbusiness associate security rule complianceCenter for Medicare & Medicaid ServicesCMSelectronic protected health informationEnforcementFebruary 17Federal RegisterHHSHIPAAHIPAA Administrative SimplificationHITECH ActJuly 27 2009notificationOCROctober 7 2003Office of Civil Rightsoversightphysical standardsPresident ObamaPrivacy RuleSecretary SebeliusSecurity RuleStandardstechnical
No Comments
Share
0

You also might be interested in

HHS Pulls Breach Notification Final Rule

Jul 30, 2010

The HIPAA Administrative Simplification; Notification in the Case of Breach[...]

OCR Stepping Up HIPAA Security Enforcement

May 13, 2010

Health Data Management (HDM) reported today, May 12, that the[...]

Facility Access Controls: Facility Security Plan-What to Do and How to Do It

Apr 27, 2009

In our series on the HIPAA Administrative Simplification Security Rule,[...]

Leave a Reply Cancel Reply

Categories

  • 5010
  • American Recovery and Reinvestment Act
  • Enforcement
  • GINA
  • Health Care Reform
  • Health IT and HITECH
  • HIPAA Law
  • Identifiers
  • Meaningful Use
  • Privacy
  • Red Flags Rules
  • Security
  • Transactions & Code Sets
  • Uncategorized

Recent Posts

  • Contracting with Vendors that are NOT HIPAA Business Associates: Best Practices
  • HIPAA Breach: Who You Gonna Call?
  • Can I Be Sued for a HIPAA Violation?
  • Business Associate Agreements – a First Look at Indemnification
  • Gmail, Google Apps for Business HIPAA Business Associate Agreements

Archives

Contact Us

We're currently offline. Send us an email and we'll get back to you, asap.

Send Message
HIPAA- Health Insurance Portability Accountability Act

© 2023 · hipaa.com

Prev Next