link to ARMA about us

General Information                     
Overview
What is RIM?
RIM FAQs
Leadership                       
Board of Directors  
Executive Officers  
Staff Contacts  
Governance                      
Mission, Vision, Values  
Governance Policies and Procedures  
Code of Professional Responsibility  
Strategic Issues*  
Operating Plan*  
Board Minutes/Reports*  
State of the Association*  
Election Information*  
Chapters & Regions                              
Chapter Leadership Directory
Region Leadership Directory
Leadership Resources**
Chapter Listing
Awards                                                    
Awards
Cobalt Award
Educational Foundation  
Media Relations  
Advertising Information                         
Media Kit
Sponsorships
Expo Guide
Buyer's Guide
Exhibitor Prospectus

join ARMA

Member Benefits  
Membership Applications                                 
New Application
Renewal Application*
Industry Member Application
LINC Application
Networking Opportunities                            
ARMA iConference
Social Media Sites
Chapter Leadership Directory
Volunteer Opportunities                            
Committees
Volunteer Application*
Officer Candidate Application*
Code of Professional Responsibility  

ARMA publications

What is RIM?  
Regulatory Updates           
Washington Policy Brief
Canadian Policy Brief
International Policy Brief
Standards           
Standards & Best Practices
Glossary of RIM Terms
Information Management magazine  
Buyers Guide  
InfoPro Online*  
Newswire  
Washington Policy Brief  
Canadian Policy Brief  
International Policy Brief  
Hot Topic  
Advertising Opportunities  

ARMA Resources

Standards           
Standards & Best Practices
Glossary of RIM Terms
Professional Competencies  
Code of Professional Responsibility  
Generally Accepted Recordkeeping Principles ®  
Training Programs  
Podcasts  
RIM Promotion Materials  
RIM 101  
Media Releases  
Job Search  
Risk Assessments  
Facilitator Resources
Information Overload Blog
Social Media
Young Professional Resources

ARMA bookstore

New Releases  
Product Search  
View Order Status  

goto customer service

FAQs
Update Profile
Change Password
View Recent Purchases
Bookstore Order Status
Contact Us
Privacy Policy

My ARMA

Member Logon
Update Profile
Change Password
Account Preferences
Member Directory
Board Minutes*
Other Forms*
Strategic Plan*

ARMA site map

   
   
 

Washington Policy Brief

Related Information

Sign Up for the WPB
WPB Archive

Printer Friendly Version

AHIMA Slams Privacy Rules

New privacy protection laws included in the American Recovery and Reinvestment Act of 2009 (ARRA) make even a brief unauthorized look at medical records a federal offense that can mean large monetary fines both for individuals and healthcare facilities, argues the American Health Information Management Association (AHIMA).

A feature article in the August issue of the Journal of AHIMA reports that providers across the nation are now charged with the task of adapting their privacy policies and procedures to meet both state and federal requirements, while California amplified the task by overhauling healthcare privacy policies with strict new state laws.

According to AHIMA, Congress used ARRA as an attempt to increase patient trust that the healthcare industry will protect their personal health information. The data breach notification regulations are the first of the ARRA privacy provisions to take effect. The law required both the Department of Health and Human Services and the Federal Trade Commission to create and publish final interim regulations by August 16. California’s state laws contain tough new requirements that require facilities to report all privacy breaches to the California Department of Public Health.

The article explains how sorting out whether state or federal law is stricter has become a big challenge for healthcare officials because, as drafted, ARRA suggests that federal regulations will not preempt state laws. Under California law, patients must be notified if their health information has been compromised and if lost or stolen records are not encrypted with data protection technology.

California’s Privacy Pileup explains that once final regulations are announced, the collision of state and federal laws can be alleviated if healthcare organizations study and comply with ARRA provisions determined to be the most stringent. Also discussed is the need for these entities to work toward common interpretations and implementations when setting their policies.

ARMA International Washington Policy Brief, September 2009

Full Washington Policy Brief



    

Advertisement: iDatix

Advertisement: Next Page

Advertisement: Scanning America, Inc.
 
     
 
about arma     join arma     your membership     contact arma     help   PRIVACY POLICY


© 2010, ARMA International