“The HIPAA Privacy Rule 15 Years Later: What’s Next?” Workshop
December 4 @ 9:00 am - 12:00 pm
About the Workshop:
Fifteen years ago, the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule came into effect for covered entities. Over the past 15 years, the only major change to the HIPAA Privacy Rule occurred in 2013 when HHS issued the Omnibus Final Rule, which made the HIPAA Privacy Rule directly applicable to business associates. However, the Omnibus Final Rule did not address what many critics view as barriers to sharing data, which may hinder efforts to encourage providers to adopt electronic health technology, and did not address gaps that are a result of recent technological advances.
Recently, HHS published a request for information (RFI), “HIPAA Privacy: Request for Information on Changes to Support, and Remove Barriers to, Coordinated Care.”The RFI seeks to solicit the public’s views on how the HIPAA Rules should be updated to mitigate potential barriers that limit or discourage coordinated care and case management among hospitals, physicians, payors, and patients, or otherwise impose regulatory burdens that may impede the transformation to value-based health care without providing commensurate privacy or security protections for PHI. Under HIPAA, HHS has the authority to modify the privacy standards as the Secretary deems appropriate.
In light of these gaps and the RFI, FPF, Duke in DC, and Intel are bringing together relevant stakeholders to discuss what changes to the HIPAA Privacy Rule could and should look like.
Questions? Please email [email protected] for more information.