• 28Aug

    Deceased Person’s Data Still Part of HHS Data Breach Notice Rule

    Lora Bentley, in her recent posting in the ITBusinessEdge blog, wants to remind us that the data breach notification rule promulgated by the U.S. Department of Health and Human Services (HHS) pursuant to the HITECH Act, even applies to individuals the covered entity knows to be deceased.

    Given the fact that each state and territory law has its own position on this rule, and, in fact, where some do not have such a stipulation of notice regarding deceased persons, each organization must pay careful attention to protect themselves from potential privacy breach lawsuits stemming from the HHS rule. 

    Click here to read this article and remember to follow the link within this article to the HHS rule as published in the Federal Register for public comment.

    Filed under: Information Security, Security and Privacy
    Tags: consumer data protection act, Data Breach, HITECH Act, Information Security, privacy laws, U.S. Department of Health and Human Services
    No Comments

Navigation:

  • Compliance Blog Home
  • About Radian Compliance

Category:

  • Business Continuity
    • BS 25999
  • Compliance Management
    • Risk Management
  • credit card industry
  • cybersecurity
  • E-Discovery
  • Events
  • General
  • Information Security
    • ISO 27001
  • IT Service Management
    • ISO 20000
  • Security and Privacy
  • Supply Chain Management

Archives:

  • 2011
  • 2010
  • 2009
  • 2008
  • 2007
  • 2006

Web Links:

  • Continuity Compliance
  • Illinois I.T. Association
  • Radian Compliance Main

Meta:

  • RSS
  • Comments RSS
  • Valid XHTML
  • XFN
© 2012 Radian Compliance, LLC. All Rights Reserved. Entries RSS Comments RSS Login