• Long-Expected Omnibus HIPAA Rule Implements Significant Privacy and Security Regulations for Entities and Business Associates
  • February 12, 2013
  • Law Firm: Mayer Brown LLP - Chicago Office
  • On January 17, 2013, the Department of Health and Human Services (HHS) issued the final “omnibus” rule modifying the HIPAA Privacy, Security, Breach Notification and Enforcement Rules (Final Rule). As expected, the Final Rule extends the reach and limits of HIPAA’s privacy and security provisions. The Final Rule implements mandated changes to HIPAA set forth by the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), enacted February 17, 2009, and, to a lesser extent, the Genetic Information Nondiscrimination Act of 2008 (GINA).