CMS Gives Guidance on HIPAA Security Rule
Health Data Management (November 30, 2004)

The Centers for Medicare and Medicaid Services has published the first of seven educational papers giving guidance on the HIPAA security rule. The rule has a compliance date of April 20, 2005, for most covered entities. Very small payers have an additional year.
The first paper in the “HIPAA Security Series” is an overview of the security rule and how it interacts with the privacy rule.

Subsequent reports will cover administrative safeguards to defend electronic protected health information under the rule; physical safeguards; technical safeguards; policies, procedures and documentation requirements; risk analysis and risk management; and implementation for small providers.

Additional information is available at

Posted to HIPAAcomply 11/30/04