IS3350
Unit 4 Assignment 1
24 May 2014
Privacy or Security Complaint to the Office of Civil Rights
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was created to develop some type of regulations protecting the privacy and security of certain health information which shouldn’t be accessible to others. The U.S. Department of Health and Human Services (HHS) is responsible for HIPAA compliance within the Privacy Rule as well as the Security Rule. The Privacy Rule develops national standards for protecting certain health information while the Security Rule establishes a national set of security standards for protecting certain health information that is held or transferred in electronic form. One of the specific sections of the form that need critical attention while filing the complaint is having your complaint filed in writing, either on paper or electronically to have records of the complaint. You are also required to name the covered entity involved in your complaint while reviewing whichever requirements being violated in the Privacy and/or Security Rule. It also requires the complaint being filed within 180 days of when you knew that the act or omission happened. OCR may extend the 180-day period if you have good reason for the extension. HIPAA also prohibits retaliation. This means that anything under HIPAA cannot retaliate against you for complaining. If any retaliation activity occurs, you are required to immediately