Our Breach Notification Framework provides complete step-by-step coverage of how to evaluate a security incident to determine if breach notification is triggered. Our Framework also provides Tools and Templates your organization can use to track and document security incidents.
Our HIPAA Breach Notification Framework (“Framework”) is intended to provide guidance to covered entities and business associates regarding the final breach notification regulations, which implement section 13402 of the Health Information Technology for Economic and Clinical Health (“HITECH”) Act by requiring HIPAA covered entities and their business associates to provide notification following a breach of unsecured protected health information. This Framework incorporates modifications that were promulgated by the Department of Health and Human Services (“HHS”) in 2013. The regulations pertaining to breach notification have been codified in 45 CFR 164 Subpart D.