August 21, 2009 / Law Alert

Government Agencies Issue HITECH Act Regulations

This week, two federal agencies have released regulations requiring notification to individuals in the event of a security breach of unsecured protected health information (PHI). Both agencies are acting under the requirements of The American Recovery and Reinvestment Act of 2009 (ARRA), signed into law February 17, 2009, which included what is known as the Health Information Technology for Economic and Clinical Health Act (HITECH Act).