CMS Gives Guidance on HIPAA Security Rule
Health Data Management
(November 30, 2004)
The Centers for Medicare and Medicaid Services has published the first of
seven educational papers giving guidance on the HIPAA security rule. The
rule has a compliance date of April 20, 2005, for most covered entities.
Very small payers have an additional year.
The first paper in the “HIPAA Security Series” is an overview of the
security rule and how it interacts with the privacy rule.
Subsequent reports will cover administrative
safeguards to defend electronic protected health information under the rule;
physical safeguards; technical safeguards; policies, procedures and
documentation requirements; risk analysis and risk management; and
implementation for small providers.
Additional information is available at
Posted to HIPAAcomply