Privacy Rule Burden: 62.3 Million Hours – WOW

A notice in published July 29 in the Federal Register starkly demonstrates administrative burdens of complying with the HIPAA privacy rule.

The Department of Health and Human Services published the notice as part of its intent to continue requiring documentation of compliance. The notice lists a dozen documentation requirements, such as authorization to use and disclose protected health information, and notices of privacy practices.

In total, HHS estimates an industry-wide annual reporting burden of nearly 62.3 million hours-98% of which covers dissemination of a notice of privacy practices and patient acknowledgement. Accounting for use and disclosure of PHI make up most of the remaining burden.

The notice is available at gpoaccess.gov/fr/index.html.

via Privacy Rule Burden: 62.3 Million Hours.

Related posts

• Visa leads effort at PCI conference to minimise payment information vulnerability (0)
• Hedge Your Bets: The Importance of IT Risk Management in M&A (0)
• Feds finally put teeth into HIPAA enforcement (0)
• Why Do Bad Things Happen to PCI-Compliant Companies? (0)
• Unseen communications violate PCI DSS compliance | OUT-LAW.COM (0)

---

Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically each day to your feed reader. If you don't have a feed reader, you can always have these articles delivered to your email inbox every day. Click here to sign up.