You have requested access to member only content.

Guilty until proven innocent

One of the major changes the final omnibus rule places on providers and business associates is the presumption that any unauthorized use or disclosure of unsecured protected health information (PHI) is a "breach." Specifically, the omnibus rule states that:

"… an acquisition, access, use, or disclosure of protected health information in a manner not permitted [under the Privacy Rule] ... is presumed to be a breach unless the covered entity or business associate, as applicable, demonstrates that there is a low probability that the protected health information has been compromised based on a risk assessment."

This is an excerpt from members-only content. Please log in or become a member to access the full content.

Not a member? Let's fix that!

A membership to Accreditation and Quality Compliance Center provides accreditation and safety professionals with a collection of continuously updated tools, best-practice strategies, and compliance tips developed by industry experts. With two membership options, you can customize your access level depending on your education and training needs.

Register to access the free content available on the site or become a member today. Click here for more information.

For questions and support, please call customer service: 800-650-6787.