Hennessy Comments on Relaxation of California’s Breach Reporting Requirements

26 July 2021 Report on Medicare Compliance News

Senior Counsel Jennifer Hennessy was quoted in a Report on Medicare Compliance article, “Exceptions to Breach Reporting Law Take Effect in California,” about a relaxation of California’s health care facility breach reporting requirements under a 2008 state medical breach reporting law.

Under the new law, hospitals and other health care facilities are excused from reporting breaches that satisfy certain exceptions, including breaches that have a low probability of compromising medical information. Before, they were required to report all unauthorized access and disclosure, regardless of magnitude.

Hennessy said the new regulation “aligns California’s health care facility breach law much more closely with HIPAA now.”

(Subscription required.)