Under the new HIPAA Omnibus Rule, healthcare organizations and their business associates will be under more scrutiny than ever to protect patient information. The new rule includes a new breach notification rule that spells out a more objective way to determine whether a security incident must be reported to authorities as well as the individuals affected. Organizations need to keep in mind that many HIPAA cases start out as relatively minor complaints “that are really customer-service oriented,” David Holtzman says. Too often, organizations view compliance with the HIPAA privacy and security rules as a burdensome expense, rather than a valuable investment.”]
Source: https://www.govinfosecurity.com/pressure-to-protect-health-data-intensifies-a-6364