Related Items

• Marketplace

• Find Security products & services on
  HDM Marketplace

• Find HIPAA Compliance products & services on
  HDM Marketplace

• Articles from this Site

  House Committee Okays I.T. Bill

  CCHIT Issues PHR Recommendations

  Blues: House I.T Bill Needs Fixes

  Siemens to Market Single-Sign-On

  CCHIT Updates its Progress

• White Papers

  Double Take® In The HIPAA-Regulated Healthcare Industry

  Why The Mobile Industry is Evolving Towards Security

  Evaluating EHR Systems: A Step By Step Approach

  A Guide to Understanding and Implementing Network Access Control in Healthcare Network

  Compliance. Protection. Recovery. A Layered Approach to Computer Security for Healthcare Organizations

• Web Seminars

  Laptop Management and Data Breach Prevention for Healthcare

  Performance Analytics: Next Generation Healthcare Dashboards... Now

  Patient Safety Indicators - Using Clinical Benchmarking and Patient Profiling to Improve Outcomes, Reduce Costs, and Save Lives

FREE Health Data Management Site Registration

Sign up today and access the leading source of Health Care I.T. information on the Web. Your FREE site registration entitles you to: Free Health Data Management e-newsletter   Search more than 12,000 articles   Access Web Seminars on a host of I.T. topics   White Papers and Industry Research that provide valuable insights on a variety of technologies and implementation issues   Podcasts, updates on industry events, and much more!

HHS Issues Privacy Enforcement Data

The Department of Health and Human Services’ Office for Civil Rights has released updated statistics showing how it handles complaints of violations of the HIPAA privacy rule.

OCR received 32,595 complaints from after the rule’s compliance date of April 14, 2003, through 2007. Of those complaints, 25,536 were resolved. OCR offered no explanation of the status of the remaining complaints.

Of the resolved complaints, no action was taken on 17,337, or 68%. These complaints were inappropriate for investigation because they covered actions that occurred before the compliance date, involved entities not covered under the privacy rule, involved alleged activity that would not violate the rule or were not filed in a timely manner, OCR says. Some complaints also were not investigated because OCR could not confirm the identity of the person making the complaint, or OCR needed to disclose the person’s name to obtain certain information and the person would not consent to the disclosure.

In total, OCR investigated 8,199 complaints between mid-April 2003 and the end of 2007. No violation of the rule was found in 2,690 cases. In 5,509 other instances, the covered entity took corrective action to correct violations. To date, federal officials have won two criminal convictions against individuals for serious violations of the privacy rule.

For more information, visit hhs.gov/ocr.

Data Security Archive
Policies/Regulation Archive
Hospitals Archive
Group Practices Archive
Payers Archive

I.T. Spotlights

• About Us
• Advertising/Media Kit
• Reprints
• Editorial Calendar
• Contact Us
• Customer Service
• Privacy Statement

©2008 HealthDataManagement and SourceMedia, Inc. All rights reserved.
SourceMedia is an Investcorp company.
Use, duplication, or sale of this service, or data contained herein, is strictly prohibited.