America’s patient privacy law, the Health Information Portability and Accountability Act of 1996, has been anything but static. Regulators have pushed to keep it current and to draft forward-looking rules. This fall is no different, with a second round of government audits scheduled that could be the toughest yet for covered entities (i.e., health plans, health care clearinghouses, and health care providers who electronically transmit any health information).
Covered entities often face an uphill battle when trying to manage HIPAA requirements. They must respond to regulatory updates, such as the recent changes in the Omnibus Rule of HIPAA, which governs the interactions between service providers and health care companies. Those amendments can quickly force covered entities into a tough spot.