Employers who sponsor a group health plan and creates or maintains protected health information electronically must comply with the Security Rule under HIPAA. A group health plan is defined under the HIPAA regulations and includes standard medical, dental, flexible spending accounts and other types of employee benefit plans. Large group health plans were required to comply on April 20, 2005, and small group health plans were given an extra year for compliance.
Tags:
