{"id":161,"date":"2013-01-31T13:37:37","date_gmt":"2013-01-31T17:37:37","guid":{"rendered":"http:\/\/blogs.duanemorris.com\/healthlaw\/?p=161"},"modified":"2014-09-10T12:43:56","modified_gmt":"2014-09-10T16:43:56","slug":"overview-of-2013-amendments-to-hipaa-privacy-security-breach-notification-and-enforcement-rules","status":"publish","type":"post","link":"https:\/\/blogs.duanemorris.com\/healthlaw\/2013\/01\/31\/overview-of-2013-amendments-to-hipaa-privacy-security-breach-notification-and-enforcement-rules\/","title":{"rendered":"Overview of 2013 Amendments to HIPAA Privacy, Security, Breach Notification and Enforcement Rules"},"content":{"rendered":"<p>The 2013 Amendments include a number of sweeping changes to the HIPAA Rules, including the expansion of the definition of a business associate to include their subcontractors that handle protected health information (&#8220;PHI&#8221;); a lower threshold for determining whether a breach has occurred for reporting purposes; and restrictions on &#8220;marketing&#8221; activities and the &#8220;sale&#8221; of PHI.<\/p>\n<p>Click <a href=\"http:\/\/www.duanemorris.com\/alerts\/overview_2013_amendments_to_HIPAA_privacy_security_breach_notification_enforcement_rules_4734.html\" target=\"_blank\">here<\/a> to read this Overview Summary of the 2013 Amendments. Duane Morris is issuing a series of <em>Alerts<\/em> on the 2013 Amendments. Please see the in-depth<em> Alerts<\/em> already distributed by the firm on changes under the 2013 Amendments to the definition of a <a href=\"http:\/\/www.duanemorris.com\/alerts\/final_HIPAA_amendments_expand_HIPAA_net_4724.html\" target=\"_blank\">business associate<\/a> and changes to the <a href=\"http:\/\/www.duanemorris.com\/alerts\/new_HIPAA_breach_notification_rule_may_prove_costly_for_HIPAA-covered_entities_4728.html\" target=\"_blank\">breach notification<\/a> requirements. We will continue to issue <em>Alerts<\/em> on discrete HIPAA topics.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The 2013 Amendments include a number of sweeping changes to the HIPAA Rules, including the expansion of the definition of a business associate to include their subcontractors that handle protected health information (&#8220;PHI&#8221;); a lower threshold for determining whether a breach has occurred for reporting purposes; and restrictions on &#8220;marketing&#8221; activities and the &#8220;sale&#8221; of &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/blogs.duanemorris.com\/healthlaw\/2013\/01\/31\/overview-of-2013-amendments-to-hipaa-privacy-security-breach-notification-and-enforcement-rules\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Overview of 2013 Amendments to HIPAA Privacy, Security, Breach Notification and Enforcement Rules&#8221;<\/span><\/a><\/p>\n","protected":false},"author":6,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[280,276,217,278,279,75,273,275,40,277,274,282,220,281],"ppma_author":[906],"class_list":["post-161","post","type-post","status-publish","format-standard","hentry","category-health-law","tag-authorization","tag-business-associate","tag-data-breach","tag-fundraising","tag-gina","tag-health-care","tag-health-information-technology","tag-health-law-2","tag-hipaa","tag-hit","tag-hitech","tag-marketing","tag-privacy","tag-protected-health-information"],"authors":[{"term_id":906,"user_id":6,"is_guest":0,"slug":"duanemorris3","display_name":"Duane Morris","avatar_url":"https:\/\/secure.gravatar.com\/avatar\/843ff6e7a8fe5fc92109b47a45f34b6cf0ea499e6e788db23456c838b0ae6747?s=96&d=blank&r=g","0":null,"1":"","2":"","3":"","4":"","5":"","6":"","7":"","8":""}],"_links":{"self":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/posts\/161","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/comments?post=161"}],"version-history":[{"count":0,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/posts\/161\/revisions"}],"wp:attachment":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/media?parent=161"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/categories?post=161"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/tags?post=161"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/ppma_author?post=161"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}