HIPAA has three specific compliance areas, each with their own compliance date. The deadline to comply with the electronic transactions and code-sets rules was October 16, 2002 unless you filed for a one-year extension. The privacy rule compliance deadline is April 14, 2003. There is no postponement; all physicians who are covered entities must be compliant with the privacy rule by April 14.

The HIPAA security rule, which was published in the Federal Register last week, goes into effect in April 2005. The security rule governs technical requirements to ensure that electronically transmitted health information is adequately protected and secure. Stay tuned to future issues of Alert for guidance and information on this technical aspect of HIPAA.

Do you have other questions about HIPAA compliance? Buy the CMA/ PrivaPlan HIPAA Compliance Toolkit on CD-ROM or sign up for CMA’s Total HIPAA Compliance Workshop today and get the answers you need.

Contact: CMA’s HIPAA Hotline, 415/882-3311 or legalinfo@cmanet.org .

Previous HIPAA Tips:

HIPAA Tip: Chart Cabinets

How Sharp are Your HIPAA Tools?

HIPAA Tip: Security Rule Delay

HIPAA Tip: Sign-In Sheets

HIPAA Tip: Using Patient Names

HIPAA Tip: Using Reminder Postcards

HIPAA Tip: Extension Does Not Apply to Privacy Rule

HIPAA Tip: Inpatient/Outpatient Privacy Notice Requirements Differ

HIPAA Tip: The Extension Deadline Has Passed—Now What?