HIPAA Compliance Plan

HIPAA Survival Guide Note: HITECH Act Summary

This page contains the table of contents for the entire HITECH Act text. If you are looking for a summary and commentary on the HITECH Act, click here: HITECH Act Summary.

Questions about HIPAA Compliance in this post HITECH/Omnibus Final Rule world?
Get up to speed fast with the HIPAA Survival Guide Fourth Edition and
our Omnibus Rule Ready™ HIPAA Compliance Tools.

DIVISION A: TITLE XIII—HEALTH INFORMATION TECHNOLOGY

Subtitle A—Promotion of Health Information Technology

PART 1—IMPROVING HEALTH CARE QUALITY, SAFETY, AND EFFICIENCY

13101 ONCHIT; Standards Development and Adoption.

13102 Technical Amendment.

PART 2—Application and use of adopted health information technology standards; Reports

13111 Coordination of federal activities with adopted standards and implementation specifications.

13112 Application to private entities.

13113 Study and reports.

Subtitle B—Testing of Health Information Technology

13201 National Institute for Standards and Technology Testing.

13202 Research and development programs.

Subtitle C—Grants and Loans Funding

13301 Grant, loan, and demonstration programs.

Subtitle D—Privacy

13400 Definitions

Breach Business Associate Covered Entity Disclose Electronic Health Record Health Care Operations Health Care Provider Health Plan National Coordinator Payment Personal Health Record Protected Health Information Secretary Security State Treatment Use Vendor of Personal Health Records

PART 1—IMPROVED PRIVACY PROVISIONS AND SECURITY PROVISIONS

13401 Application of security provisions and penalties to business associates of covered entities; annual guidance on security provisions.

13402 Notification in the case of breach.

13403 Education on health information privacy.

13404 Application of privacy provisions and penalties to business associates of covered entities.

13405 Restrictions on certain disclosures and sales of health information; accounting of certain protected health information disclosures; access to certain information in electronic format.

13406 Conditions on certain contacts as part of health care operations.

13407 Temporary breach notification requirement for vendors of personal health records and other non-HIPAA covered entities.

13408 Business associate contracts required for certain entities.

13409 Clarification of application of wrongful disclosures criminal penalties.

13410 Improved enforcement.

13411 Audits.

13412 Recognition of Security Practices.

PART 2—RELATIONSHIP TO OTHER LAWS; REGULATORY REFERENCES; EFFECTIVE DATE; REPORTS

13421 Relationship to other laws.

13422 Regulatory references.

13423 Effective date.

13424 Studies, reports, guidance.

Watch this video highlighting the HIPAA Survival Guide's
HITECH/Omnibus Rule Ready™ Business Associate Agreement.

Click here to purchase or for more information:
Business Associate Agreement.

DIVISION B: TITLE IV—MEDICARE AND MEDICAID HEALTH INFORMATION TECHNOLOGY; MISCELLANEOUS MEDICARE PROVISIONS

4001 Table of contents of title.

Subtitle A—Medicare Incentives

4101 Incentives for eligible professionals.

4102 Incentives for hospitals.

4103 Treatment of payments and savings; implementation funding.

4104 Studies and reports on health information technology.

Subtitle B—Medicaid Incentives

4201 Medicaid provider HIT adoption and operation payments; implementation funding.

Subtitle C—Miscellaneous Medicare Provisions

4301 Moratoria on certain Medicare regulations.

4302 Long-term care hospital technical corrections.