Full access
Professional
Published Online: 2 July 2019

HHS Adjusts Penalties for HIPAA Violations

Terri D’ArrigoAuthors Info & Affiliations
Publication: Psychiatrics News
Volume 54, Number 13
https://doi.org/10.1176/appi.pn.2019.6b11
New annual limits reflect the level of culpability when violations occur and whether corrective action was taken.
The Department of Health and Human Services (HHS) has changed the annual maximum penalties for violating the Health Insurance Portability and Accountability Act (HIPAA). The annual maximum penalties were previously capped at $1.5 million for every tier of violation. Now the annual limit is different for each tier, with only violators who demonstrate willful neglect and failure to correct violations facing a potential $1.5 million annual penalty (see table). The new penalties went into effect in April.
In a notice published in the April 30 Federal Register, HHS cited “inconsistent language” in the Health Information Technology for Economic and Clinical Health (HITECH) Act, which established the tiers in 2009, as the impetus for the changes.
“Upon further review of the statute by the HHS Office of the General Counsel, HHS has determined that the better reading of the HITECH Act is to apply [the new] annual limits,” Roger Severino, director of the HHS Office for Civil Rights, wrote. “HHS expects to engage in future rulemaking to revise the penalty tiers in the current regulation to better reflect the text of the HITECH Act.”
The tiers are defined as follows:
Tier 1: The person did not know and, by exercising reasonable diligence, would not have known that the person violated the provision.
Tier 2: The violation was due to reasonable cause and not willful neglect.
Tier 3: The violation was due to willful neglect that was corrected in a timely manner.
Tier 4: The violation was due to willful neglect that was not corrected in a timely manner.
APA offers HIPAA guides for members, including “APA’s HIPAA Privacy Rule Manual: A Guide for Your Psychiatric Practice” and “APA HIPAA Security Rule Manual.” They are posted here. ■
“Notification of Enforcement Discretion Regarding HIPAA Civil Money Penalties” is posted here.

Information & Authors

Information

Published In

Go to Psychiatric News
Psychiatrics News
Volume 54Number 13June 22, 2019 – July 5, 2019

History

Published online: 2 July 2019
Published in print: June 22, 2019 – July 5, 2019

Keywords

  1. HHS
  2. HIPAA
  3. HITECH
  4. violation
  5. privacy

Authors

Details

Metrics & Citations

Metrics

Citations

Export Citations

If you have the appropriate software installed, you can download article citation data to the citation manager of your choice. Simply select your manager software from the list below and click Download.

For more information or tips please see 'Downloading to a citation manager' in the Help menu.

Format
Citation style
Style
Copy to clipboard
Tips for downloading citations

There are no citations for this item

View Options

View options

Get Access

Login options

Already a subscriber? Access your subscription through your login credentials or your institution for full access to this article.

Personal login Institutional Login Open Athens login

Not a subscriber?

Subscribe Now / Learn More

PsychiatryOnline subscription options offer access to the DSM-5-TR® library, books, journals, CME, and patient resources. This all-in-one virtual library provides psychiatrists and mental health professionals with key resources for diagnosis, treatment, research, and professional development.

Need more help? PsychiatryOnline Customer Service may be reached by emailing [email protected] or by calling 800-368-5777 (in the U.S.) or 703-907-7322 (outside the U.S.).

Media

Figures

Other

Tables

Share

Share

Share article link

Share

×

As described within the American Psychiatric Association (APA)'s Privacy Policy and Terms of Use, this website utilizes cookies, including for the purpose of offering an optimal online experience and services tailored to your preferences. Please read the entire Privacy Policy and Terms of Use. By closing this message, browsing this website, continuing the navigation, or otherwise continuing to use the APA's websites, you confirm that you understand and accept the terms of the Privacy Policy and Terms of Use, including the utilization of cookies.