Healthcare Organizations Await Final Rules
HEALTHCARE PRIVACY—U.S.November 21, 2012
GovInfoSecurity reports on lingering uncertainty surrounding the much-delayed omnibus package of healthcare regulations. The regulation will include modifications to HIPAA’s breach notification rules, including clarification about when a breach must be reported, and will specify that using genetic information for insurance underwriting is a privacy violation. Some healthcare organizations report difficulty setting privacy and security priorities without the regulations. The Department of Health and Human Services Office for Civil Rights (OCR) has not indicated when the final rules will be handed down. A former OCR employee speculates, however, that the rules will be published in December.