A Survey of U.S. Laws for Health Information Security & Privacy-Reference-Cited by-同舟云学术

A Survey of U.S. Laws for Health Information Security & Privacy

Published:2012-10 Issue:4 Volume:6 Page:40-54
ISSN:1930-1650
Container-title:International Journal of Information Security and Privacy
language:en
Short-container-title:

Author:

Akowuah Francis¹,Yuan Xiaohong¹,Xu Jinsheng¹,Wang Hong²

Affiliation:

1. Department of Computer Science, North Carolina A&T State University, Greensboro, NC, USA

2. Department of Management, North Carolina A&T State University, Greensboro, NC, USA

Abstract

As healthcare organizations and their business associates operate in an increasingly complex technological world, there exist security threats and attacks which render individually identifiable health information vulnerable. In United States, a number of laws exist to ensure that healthcare providers take practical measures to address the security and privacy needs of health information. This paper provides a survey of U.S. laws related to health information security and privacy, which include Health Insurance Portability and Accountability Act (HIPAA),Gramm-Leach-Bliley Act, Sarbanes-Oxley Act of 2002, Patient Safety and Quality Improvement Act of 2005, and Health Information Technology for Economic and Clinical Health (HITECH).The history and background of the laws, highlights of what the laws require, and the challenges organizations face in complying with the laws are discussed.

Publisher

IGI Global

Subject

Information Systems

Reference41 articles.

1. Agency for Healthcare Research and Quality (AHRQ). (2008). The patient safety and quality improvement act of 2005. Agency for Healthcare Research and Quality. Retrieved June 28, 2012, from http://www.ahrq.gov/qual/psoact.htm

2. THE GRAMM-LEACH-BLILEY ACT OF 1999: RISK IMPLICATIONS FOR THE FINANCIAL SERVICES INDUSTRY

3. AWI. (2008). Protecting the privacy of patient's health information. Apple Wood Imaging. Retrieved March 15, 2012, from http://www.applewoodimaging.com/CustomPage.asp?guidCustomContentID=%7BD2CE5E24-E1AB-48C2-ADCA-F1B0AD15AA3C%7D

4. Barrete, L. (2010). HITECH act means more rules, more risk. Retrieved June 19, 2012, from http://www.ehnac.org/files/PDF/FSAP_HITECH.pdf

5. Buck Consultants. (2010). HHS proposes changes to the HIPAA privacy, security and enforcement rules. Buck Consultants. Retrieved June 2012 from http://www.buckconsultants.com/portals/0/publications/FYI/2010/FYI-10-01-10a-HHS-Proposes-Changes-to-the-HIPAA-Privacy-Security-and-Enforcement-Rules.pdf