Recommended reading
HIPAA Rules and Requirements
Welcome to our list of commonly used security and compliance terms.
The HIPAA Omnibus Rule is a set of regulations issued by the U.S. Department of Health and Human Services (HHS) that modifies the Health Insurance Portability and Accountability Act (HIPAA) of 1996, the Health Information Technology for Economic and Clinical Health (HITECH) Act, and other laws related to health information privacy and security. The Omnibus Rule was published in 2013 and went into effect on September 23, 2013.
The Omnibus Rule includes a number of provisions that strengthen individuals' privacy and security protections for their protected health information (PHI). Some of the key provisions of the rule include:
Requiring that covered entities revise their Notices of Privacy Practices (NPPs) to reflect the changes made by the Omnibus Rule, and to distribute the revised NPPs to individuals. The Omnibus Rule also increased the penalties for HIPAA violations, and provided for expanded enforcement authority for HHS.
HIPAA Rules and Requirements