Reminder: Deadline for Small Plans to Comply with HIPAA Security Rule Approaching
Julia M. Vander Weele, Sunday, January 01, 2006 | Filed under: Health Plans, HIPAA Privacy and Security
Although many health plans completed their HIPAA Security Rule compliance efforts last spring, small health plans were given an additional year in which to comply. A small health plan is defined as a plan with annual receipts of $5 million or less. These small plans now have only three months remaining, or until April 21, 2006, to comply with the HIPAA Security Rule.
Although many health plans completed their HIPAA Security Rule compliance efforts last spring, small health plans were given an additional year in which to comply. A small health plan is defined as a plan with annual receipts of $5 million or less. These small plans now have only three months remaining, or until April 21, 2006, to comply with the HIPAA Security Rule.
The HIPAA Security Rule adopts standards for the security of electronic protected health information (E-PHI). It requires a health plan to implement reasonable administrative, technical, and physical safeguards to protect the confidentiality, integrity, and availability of E-PHI. See our July 2004 issue of Benefits in Brief for a full discussion of the Security Rule requirements. Sponsors of small plans that have not yet begun their compliance efforts should begin immediately.