![]() ![]() ![]() CHA has asked CDPH if this means that hospitals can now destroy older records. ![]() The regulations mandate that records about breaches must be retained for six years. Set forth an administrative penalty structure, including base penalties and adjustment factors.Specify the information that must be included when a hospital reports a breach to CDPH and to the patient.This will reduce the number of incidents that hospitals will be required to report to CDPH. Allow hospitals to conduct a HIPAA-like risk assessment and report only those breaches determined to pose a high probability that medical information has been compromised.Given the extremely short notice period, CHA has requested that CDPH exercise enforcement discretion on the portions of the regulations that require hospitals to take various affirmative steps - for example, to put systems in place to keep track of every patient whose information has been breached. CDPH plans to notify health facilities, clinics, home health agencies, and hospices soon by way of an All Facilities Letter. Ordinarily these regulations would have become effective on Oct. 1, but CDPH requested an earlier effective date, not realizing that OAL would take so long to approve the regulation package. The California Department of Public Health (CDPH) informed CHA on June 28 that the Office of Administrative Law (OAL) approved CDPH’s medical breach regulations. They will take effect July 1. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |