🏥HIPAA Modifications
This document updates compliance and other dates presented in the final rule that appeared in the December 13, 2024 Federal Register titled "Administrative Simplification: Modifications of Health Insurance Portability and Accountability Act of 1996 (HIPAA) National Council for Prescription Drug Programs (NCPDP) Retail Pharmacy Standards; and Modification of the Medicaid Pharmacy Subrogation Standard" to conform with the subsequent final rule that appeared in the February 11, 2025 Federal Register.
Learn More🏥Changes to NPPES Data Collection Practices Impacting Providers
This notice provides information on changes to a data element collected by the National Plan and Provider Enumeration System (NPPES) when a provider applies for a National Provider Identifier (NPI), which changes are made pursuant to provisions of the January 20, 2025, Executive Order, 14168 (90 FR 8615). This notice also provides an explanation of the nature and rationale for the changes, and their effect on public-facing data available in NPPES downloadable files and the query-only database on the internet.
Learn More📄HIPAA Exceptions for Da Vinci Project and Alternative Standards Report
This notice provides the public with information about the availability and location of the Health Level Seven (HL7) International Da Vinci Project (Da Vinci) Report, which includes test results from the use of alternative standards for Referral Certification and Authorization and Eligibility for Health Plan transactions approved under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) exceptions process.
Learn More💊Delay of HIPAA Modifications
In accordance with the Presidential memorandum of January 20, 2025, titled "Regulatory Freeze Pending Review," the effective date of the final rule titled "Administrative Simplification: Modifications of Health Insurance Portability and Accountability Act of 1996 (HIPAA) National Council for Prescription Drug Programs (NCPDP) Retail Pharmacy Standards; and Modification of the Medicaid Pharmacy Subrogation Standard" is delayed until April 14, 2025. That final rule adopted updated versions of the retail pharmacy standards for electronic transactions adopted under the Administrative Simplification subtitle of HIPAA, which constitute modifications to the adopted standards for the following retail pharmacy transactions: health care claims or equivalent encounter information; eligibility for a health plan; referral certification and authorization; and coordination of benefits. It also adopted a modification to the standard for the Medicaid pharmacy subrogation transaction.
Learn More🔐Proposed HIPAA Security Rule Enhancements for Cybersecurity Compliance
The Department of Health and Human Services (HHS or "Department") is issuing this notice of proposed rulemaking (NPRM) to solicit comment on its proposal to modify the Security Standards for the Protection of Electronic Protected Health Information ("Security Rule") under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH Act). The proposed modifications would revise existing standards to better protect the confidentiality, integrity, and availability of electronic protected health information (ePHI). The proposals in this NPRM would increase the cybersecurity for ePHI by revising the Security Rule to address: changes in the environment in which health care is provided; significant increases in breaches and cyberattacks; common deficiencies the Office for Civil Rights has observed in investigations into Security Rule compliance by covered entities and their business associates (collectively, "regulated entities"); other cybersecurity guidelines, best practices, methodologies, procedures, and processes; and court decisions that affect enforcement of the Security Rule.
Learn More