Law360 Quotes Jo-Ellyn Klein on New HIPAA Data Security, Breach Reporting Obligations

Jo-Ellyn Sakowitz Klein, senior counsel in Akin Gump’s privacy and data protection practice, was quoted by Law360 concerning changes in the Health Insurance Portability and Accountability Act mandated by a final rule released on January 17.  The rule imposes heightened data security and breach reporting obligations on health care providers, insurers and their business associates.

On the topic of business associates and the new data security obligations that this rule imposes, Klein said, “Business associates—generally, vendors serving health plans, hospitals and many other health care providers—may have a lot of work to do to come into compliance. Previously, their liability was limited to the four corners of their business associate agreements. Once the compliance date for the new ... rule arrives, they will need to answer directly to governmental authorities enforcing HIPAA, as well as to their contracting partners.”

To read the full article, please click here.