Editor’s Note: A request for public comment by the Centers for Medicare and Medicaid Services (CMS) on an Information Collection Request is attached here.
Under the Paperwork Reduction Act, CMS is not permitted to collect the requested information from the public including industry, non-profits, and state and local governments, without approval of the White House Office of Management and Budget’s Office of Information and Regulatory Affairs (OIRA). The attached Federal Register notice provides all interested persons with 60 days to comment on CMS’ burden estimates and the necessity and utility of the proposed information collection.
CMS describes the information collection as follows:
Use: This information collection corresponds to existing regulations establishing standards for the security of electronic protected health information to be implemented by health plans, health care clearinghouses and certain health care providers, as required under title II, subtitle F, sections 261 through 264 of the Health Insurance Portability and Accountability Act of 1996 (HIPAA), Pub. L. 104–191. The use of the security standards improves Federal health programs, private health programs, and the effectiveness and efficiency of the health care industry in general by establishing a level of protection for certain electronic health information. This information collection request does not propose any changes to this information collection related to future modifications of the underlying HIPAA security standards.