45 CFR 164.504 - Uses and disclosures: Organizational requirements

Cite as:45 CFR 164.504
Currency:Current through December 7, 2020
    • This document is available in original version only for vLex customers

      Read this document for free by creating your vLex Open account
    • FREE SIGN UP
77 practice notes
  • The Big Move Toward Big Data in Employment
    • United States
    • JD Supra United States
    • 5 Agosto 2015
    ...describes personnel records as confidential company property and significantly restricts access to the information in the file. 82 45 C.F.R. § 164.504(f)(2)(ii)(C). 83 42 U.S.C. § 84 See 42 U.S.C. § 12112(d)(3). 85 29 C.F.R. § 825.500(g). 86 42 U.S.C. § 2000ff(4); 29§ C.F.R. § 1635.3(c). 87......
  • Handling HIPAA Breaches: Investigating, Mitigating and Reporting
    • United States
    • JD Supra United States
    • 22 Octubre 2018
    ...a business associate is violating HIPAA, it must either take steps to cure the breach or terminate the business associate agreement. (45 CFR 164.504(e)(1)). Correct the breach. Remember: a covered entity may avoid HIPAA penalties if it did not act with willful neglect and corrects the probl......
  • Highlights of the Omnibus HIPAA/HITECH Final Rule
    • United States
    • JD Supra United States
    • 7 Marzo 2013
    ...Fed. Reg. at 5573. 6 78 Fed. Reg. at 5571-72. 7 45 C.F.R. § 164.502 (a)(3)-(4); 78 Fed. Reg. at 5598-99. 8 45 C.F.R. § 164.104(b). 9 45 C.F.R. § 164.504(e)(5). 10 78 Fed. Reg. at 5573. 11 45 C.F.R. § 164.402. 12 78 Fed. Reg. at 5695 (to be codified at 45 C.F.R. § 164.402). 13 78 Fed. Reg. a......
  • The Legal and Regulatory Landscape for Wellness Plans: The Affordable Care Act and Beyond
    • United States
    • JD Supra United States
    • 15 Mayo 2013
    ...40 691 F.3d 1221 (11th Cir. 2012). 41 Id. at 1223–24. 42 42 USC §2000ff-1. 43 EEOC Regs. §1635.8(b)(2). 44 45 CFR §160.103. 45 45 CFR §164.504(f). 46 42 USC §12112(a); see also 42 USC §12111(2), (5), & (7) Tax Management Compensation Planning Journal 2013 Tax Management Inc., a subsidia......
  • Free signup to view additional results
16 cases
41 firm's commentaries
  • The Big Move Toward Big Data in Employment
    • United States
    • JD Supra United States
    • 5 Agosto 2015
    ...describes personnel records as confidential company property and significantly restricts access to the information in the file. 82 45 C.F.R. § 164.504(f)(2)(ii)(C). 83 42 U.S.C. § 84 See 42 U.S.C. § 12112(d)(3). 85 29 C.F.R. § 825.500(g). 86 42 U.S.C. § 2000ff(4); 29§ C.F.R. § 1635.3(c). 87......
  • Handling HIPAA Breaches: Investigating, Mitigating and Reporting
    • United States
    • JD Supra United States
    • 22 Octubre 2018
    ...a business associate is violating HIPAA, it must either take steps to cure the breach or terminate the business associate agreement. (45 CFR 164.504(e)(1)). Correct the breach. Remember: a covered entity may avoid HIPAA penalties if it did not act with willful neglect and corrects the probl......
  • Highlights of the Omnibus HIPAA/HITECH Final Rule
    • United States
    • JD Supra United States
    • 7 Marzo 2013
    ...Fed. Reg. at 5573. 6 78 Fed. Reg. at 5571-72. 7 45 C.F.R. § 164.502 (a)(3)-(4); 78 Fed. Reg. at 5598-99. 8 45 C.F.R. § 164.104(b). 9 45 C.F.R. § 164.504(e)(5). 10 78 Fed. Reg. at 5573. 11 45 C.F.R. § 164.402. 12 78 Fed. Reg. at 5695 (to be codified at 45 C.F.R. § 164.402). 13 78 Fed. Reg. a......
  • The Legal and Regulatory Landscape for Wellness Plans: The Affordable Care Act and Beyond
    • United States
    • JD Supra United States
    • 15 Mayo 2013
    ...40 691 F.3d 1221 (11th Cir. 2012). 41 Id. at 1223–24. 42 42 USC §2000ff-1. 43 EEOC Regs. §1635.8(b)(2). 44 45 CFR §160.103. 45 45 CFR §164.504(f). 46 42 USC §12112(a); see also 42 USC §12111(2), (5), & (7) Tax Management Compensation Planning Journal 2013 Tax Management Inc., a subsidia......
  • Free signup to view additional results
5 books & journal articles
  • Subpoenas duces tecum vs. HIPAA: which wins?
    • United States
    • Florida Bar Journal Vol. 79 Nbr. 2, February - February 2005
    • 1 Febrero 2005
    ...and limit further uses and disclosures to those purposes that make the return or destruction of the information infeasible. 45 C.F.R. 164.504(e)(2)(ii)(I). Unfortunately, some courts, intending to secure the safeguards for PHI required by HIPAA, have begun to impose similar restrictions in ......
  • Vol. 14, No. 3, Pg. 35. HIPAA requirements for lawyers - business associate contracts.
    • United States
    • South Carolina Bar Journal Nbr. 2002, January 2002
    • 1 Enero 2002
    ...the Business Associate contract; and If termination is not feasible or possible, then report the problem to the DHHS. 45 C.F.R. § 164.504. If the covered entity fails to take appropriate action, then it will be in violation of the Privacy Rule and subject to the penalties out......
  • Hipaa One Year Later: Is Your Law Firm Complying?, 14 NHBJ, 2014 Spring-Summer, Pg. 6
    • United States
    • New Hampshire Bar Journal Nbr. 2014, January 2014
    • 1 Enero 2014
    ...and (e)(2)(ii). [27] [27] See Guidance on Risk Analysis, www.hhs.gov. [28] [28] 45 CFR §§164.524, 164.526, and 164.528. [29] [29] 45 CFR § 164.504(e). [30] [30] U.S. Department of Health & Human Services, Breach Notification Rule, HHS.gov. [31] [31] 45 CFR § 164.402(2). [32] [32] 45 CFR......
  • 79 J. Kan. Bar Assn 9, 23 (2010). How HITECH Are You? New Privacy and Security Rule Requirements.
    • United States
    • Kansas Bar Journal Nbr. 2010, January 2010
    • 1 Enero 2010
    ...45 C.F.R. § 164.526. 45 C.F.R. § 164.528(a)(1)(i). 45 C.F.R. § 164.528. Id. Id. 45 C.F.R. § 164.528(a)(1)(i). 45 C.F.R. §§ 164.502(e), 164.504(e). Id. § 164.504(e). Id. 45 C.F.R. § 164.302-318. 45 C.F.R. § 160.103. 45 C.F.R. § 164.306(a). The terms "covered entity," "health p......
  • Free signup to view additional results
13 provisions
  • Health insurance reform: Health Insurance Portability and Accountability Act of 1996— Security standards,
    • United States
    • Federal Register February 20, 2003
    • 13 Enero 2003
    ...164.308(b)(1) and Sec. 164.314(a)(1)). The specific requirements of Sec. 164.314(a)(1) are drawn from the analogous requirements at 45 CFR 164.504(e) of the Privacy Rule, although they have been adapted to reflect the objectives and context of the security standards. Compare, in particular,......
  • Part III
    • United States
    • Federal Register August 28, 2006
    • 17 Abril 2006
    ...business associates of CMS pursuant to 45 CFR 164.502(e), and would be required to sign a business associate agreement as specified at 45 CFR 164.504(e). Our contractors must abide by terms and conditions of these contractual agreements, which incorporate HIPAA and Privacy Act provisions re......
  • Regulations Under the Americans With Disabilities Act
    • United States
    • Federal Register May 17, 2016
    • 17 Mayo 2016
    ...may generally satisfy its requirement to comply with Sec. 1630.14(d)(4)(iii) by certifying to the group health plan, as provided by 45 CFR 164.504(f)(2)(ii), that it will not use or disclose the information for purposes not permitted by its plan documents and the Privacy Rule, such as for e......
  • Amendments to Regulations Under the Americans With Disabilities Act
    • United States
    • Federal Register April 20, 2015
    • 20 Abril 2015
    ...satisfies its requirement to comply with section 1630.14(d)(6) by certifying to the group Page 21664 health plan, as provided by 45 CFR 164.504(f)(2)(ii), that it will not use or disclose the information for purposes not permitted by its group health plan documents and the HIPAA Privacy Rul......
  • Free signup to view additional results