Small Breach Notifications Due by March 1

February 10, 2017 23 view(s)
Small Breach Notifications Due by March 1
HIPAA-covered entities must report small data breaches of protected health information (PHI) affecting fewer than 500 individuals to the Office for Civil Rights (OCR) by March 1.  The law allows for 60 days to elapse at the close of a calendar year before that year's small breaches must be reported to OCR. When the breach itself occurs, however, the HIPAA-covered entity must report it to those affected within 60 days. Breaches must be reported separately but can be done online.
by

NOTE: The details in this blog are provided for informational purposes only. All answers are general in nature and do not constitute legal advice. If legal advice or other expert assistance is required, the services of a competent professional should be sought. The author specifically disclaims any and all liability arising directly or indirectly from the reliance on or use of this blog.

Comments
Leave your comment
Your email address will not be published
Leave your comment
Loading...
Options chevron-down
Contact Us
Compliance 101A
Categories chevron-down
Search the blog chevron-down
Recent posts chevron-down
Latest EEOC Enforcement Data Shows Increased Pre-Litigation Activity Latest EEOC Enforcement Data Shows Increased Pre-Litigation Activity
57 view(s)
EEOC Pens Letter to Companies Regarding Title VII Compliance and DEI Initiatives EEOC Pens Letter to Companies Regarding Title VII Compliance and DEI Initiatives
112 view(s)
NLRB Officially Reinstates Previous 2020 Joint Employer Standard NLRB Officially Reinstates Previous 2020 Joint Employer Standard
197 view(s)
OSHA Releases New Job Safety and Health Workplace Poster OSHA Releases New Job Safety and Health Workplace Poster
432 view(s)
Agency Releases Newly Proposed Independent Contractor Status Rule; Seeks Employer Comments Agency Releases Newly Proposed Independent Contractor Status Rule; Seeks Employer Comments
54 view(s)