AOPA ALERT: The HIPAA Security Rule is Coming!

AOPA ALERT: The HIPAA Security Rule is Coming!

AOPA

2/14/2003

The Department of Health and Human Services (HHS) has announced the final HIPAA security rule will be published in the Federal Register on February 20, 2003. The effective date of the Security rule will be April 21, 2003 and you will have two years (until April 21, 2005) to comply with the Security requirements if you are a covered entity under HIPAA.

The HIPAA Security rule will require you to establish policies and procedures and implement administrative, physical and technical safeguards to protect the confidentiality, integrity and availability of your patients' protected health information that is electronically stored, either on your computer, laptop or PDA.

The Security rule is designed to work in concert with the HIPAA Privacy rule, and the two sets of regulations use many of the same terms and definitions in order to make it easier for you to comply with both rules.

AOPA has obtained an advance copy of the final HIPAA Security rule and will spend the next couple of weeks analyzing the Security requirements and changes from the initial proposed Security rule. We will also be working on a HIPAA Security Guide, (similar to the HIPAA Compliance Guide), which will contain a plain English interpretation of the Security Standards as well as all of the sample forms and policies and practices you will need to comply with these regulations. The HIPAA Security Guide should be available late summer or early fall.

Questions? Contact AOPA at (571) 431-0876 or <Email Address Redacted>