The HITECH Breach of Notification Rule requires covered entities to report:

Question

Quizplus · Accepted Answer

The HITECH Breach Notification Rule requires covered entities to report any impermissible use or disclosure of unsecured protected health information (PHI). This includes breaches that occur due to hacking, theft, unauthorized access, or any other incident that puts patient PHI at risk. Accusations of impermissible use and results of internal audits are not specifically required to be reported under this rule. The names of security personnel are also not relevant to breach notification.

The HITECH Breach of Notification Rule Requires Covered Entities to Report