Go to homepage
News & Publications
Legal Update from Krieg DeVault LLP
e-Reports, March 7, 2011
Font size: A  AIRSS feedRSSPrint
Reminder: HIPAA security breach reporting to HHS due March 1 Untitled document

In addition to the Department of Health and Human Services (HHS) reporting requirements for security breaches involving 500 or more individuals, the Health Insurance Portability and Accountability Act (HIPAA) requires a covered entity, such as a physician practice or a surgery center, among others, to maintain a log or other documentation of breaches of unsecured protected health information.

No later than 60 days after the end of each calendar year (i.e. March 1), HIPAA covered entities that have experienced such breaches are required to notify HHS electronically by following instructions on the HHS website.

If you have questions or require additional information, please contact Susan E. Ziel at (317) 238-6244 or Leeanne R. Coons at (317) 238-6269.

Copyright: Information written and displayed on www.ismanet.org is the property of ISMA and may not be reproduced without expressed written permission of the Indiana State Medical Association.

For a more detailed sitemap click here.