Knowledge Center
Resource View

Beyond Breaches and Business Associates: An Overview of Changes to HIPAA under ARRA/HITECH White Paper, Final Version

May 01, 2010
This White Paper focuses primarily on changes and additions to the HIPAA regulations resulting from ARRA Title XIII Subtitle D , also known as the HITECH Act privacy provisions. The changes required by the HITECH Act clearly impact the HIPAA privacy and security regulations and organizations' related policies and procedures. However, there are also other newly effective or enforceable Federal regulations such as GINA and the Red Flags Rule, which will also impact the same HIPAA-related policies and procedures.

The HITECH Act privacy provisions encompass several areas and include several notable new definitions in Section 13400 including Breach, Electronic Health Record (managed by providers), and Personal Health Record (managed by the individual).