Document |
| 21 U.S.C. 802 |
| 28 U.S.C. 1391 |
| 42 U.S.C. 1176 |
| 42 U.S.C. 1320d-5 |
| 42 U.S.C. 1320d-6 |
| 45 CFR Parts 160, 162 and 164 |
| 45 CFR § 160.103 |
| 45 CFR § 160.202 |
| 45 CFR § 160.203 |
| 45 CFR § 160.306 |
| 45 CFR §160.404 |
| 45 CFR § 162.1101 |
| 45 CFR § 164.105 |
| 45 CFR § 164.304 |
| 45 CFR § 164.306 |
| 45 CFR § 164.308 |
| 45 CFR § 164.310 |
| 45 CFR § 164.312 |
| 45 CFR § 164.501 |
| 45 CFR § 164.502 |
| 45 CFR § 164.506 |
| 45 CFR § 164.508 |
| 45 CFR § 164.510 |
| 45 CFR § 164.512 |
| 45 CFR § 164.514 |
| 45 CFR § 164.520 |
| 45 CFR § 164.522 |
| 45 CFR § 164.524 |
| 45 CFR § 164.526 |
| 45 CFR § 164.530 |
| 71 FR 8390 |
| 74 FR 19006 |
| 74 FR 42740 |
| Administrative Safeguard Table |
| American Recovery and Reinvestment Act of 2009, Title XIII Health Information Technology for Economic and Clinical Health, Subtitle D, Privacy |
| American Recovery and Reinvestment Act (ARRA) of 2009, Title XIII Health Information Technology for Economic and Clinical Health (HITECH), Subtitle D, Privacy, § 13410 |
| ARRA/HITECH § 13401 |
| ARRA/HITECH § 13402 |
| ARRA/HITECH § 13404 |
| ARRA/HITECH § 13405 |
| ARRA/HITECH § 13406 |
| ARRA/HITECH § 13408 |
| ARRA/HITECH § 13409 |
| ARRA/HITECH § 13410 |
| ARRA/HITECH § 13411 |
| Breach Notification Interim Final Rule |
| Enforcement Final Rule |
| Guidance Specifying the Technologies and Methodologies that Render Protected Health Information Unusable, Unreadable, or Indecipherable to Unauthorized Individuals |
| Health Insurance Portability and Accountability Act of 1996 (HIPAA) |
| Health Insurance Portability and Accountability Act of 1996 (Public Law 104-191), Title II, Subtitle F, Section 262 |
| Health Insurance Portability and Accountability Act of 1996 (Public Law 104-191), Title II, Subtitle F, Section 264 |
| HHS Imposes $4.3 Million CMP for HIPAA Privacy Rule Violations |
| HIPAA Administrative Simplification: Regulation Text - 45 CFR 160, 162 and 164 (Unofficial Version, as amended through February 16, 2006) |
| How OCR Enforces the HIPAA Privacy Rule |
| Imposition of Damages and CMPs |
| NIST SP 800-30, Risk Management Guide for Information Technology System |
| NIST SP 800-66, An Introductory Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule |
| OCR Headquarters and Regional Addresses |
| OCR website: Breach Notification Rule |
| OCR website: Case Examples - Case 25 |
| OCR website: Case Examples - Case 26 |
| OCR website: Case Examples - Case 29 |
| OCR website: Case Examples and Resolution Agreements |
| OCR website: Contract Provisions |
| OCR website: Educational Materials on the Security Rule |
| OCR website: FAQ Database |
| OCR website: For Covered Entities |
| OCR website: Guidance on Risk Analysis |
| OCR website: HIPAA Enforcement |
| OCR website: List of Breaches Affecting 500 or More |
| OCR website: List of Breaches Affecting Less Than 500 |
| OCR website: Minimum Necessary |
| OCR website: OCR Privacy listserv |
| OCR website: Preemption of State Law |
| OCR website: Privacy Rule |
| OCR website: Security Rule |
| OCR website: Summary of HIPAA Privacy Rule |
| OCR website: Summary of HIPAA Security Rule |
| OCR Website: Top 5 Issues |
| Physical Safeguard Table |
| Post-Assessment Case Study |
| Signed Resolution Agreements |
| State of CT Complaint |
| State of CT Corrective Action Plan |
| State of CT Privacy Rule Violations |
| State of CT Security Rule Violations |
| Technical Safeguard Table |
