Change Page Size of List
Page Size  
No record to display
Summary:

HIPAA restrictions apply to a business associate to same extent as they do to a covered entity.

Summary:

A business that owns or licenses personal information about a California resident shall implement and maintain reasonable security procedures and practices to protect the personal information from unauthorized access, destruction, use, modification, or disclosure. A business that discloses personal information about a California resident pursuant to a contract with a nonaffiliated third party shall require by contract that the third party implement similar security procedures.

Summary:

Sets forth the scope of liability against any licensed health care professional, who knowingly and willfully obtains, discloses, or uses medical information of the plaintiff. This subdivision does not limit the liability of a health care service plan, a contractor, or a provider of health care that is not a licensed health care professional for any violation of this section.

Summary:

This law exempts indices of birth, death and marriage records from disclosure under the Public Records Act. The State Registrar may release comprehensive birth, death, and nonconfidential marriage record indices to a government agency. The State Registrar is required to establish separate non-comprehensive indices for public release. Requesters of the indices must provide proof of identity and sign a form certifying that they will comply with prescribed usage guidelines. The State Registrar shall also prepare and maintain separate noncomprehensive indices of all California birth, death and nonconfidential marriage records for purposes of law enforcement or preventing fraud.

Summary:

An independent medical review organization contracting with the Department of Managed Health Care shall demonstrate that it has a quality assurance mechanism in place to ensure confidentiality of medical records it reviews.

Summary:

The State Department of Health Care Services and Social Services may utilize an entity (contractor, county consortia, nonprofit providers, partnerships) to develop and complete a comprehensive plan pertaining to statewide eligibility and enrollment determination process for the California Work Opportunity and Responsibility to Kids (CalWORKs) program, the Medi-Cal program, and the Supplemental Nutrition Assistance Program (SNAP). Such an entity shall be required to comply with (among others) the applicable privacy and security requirements, such as the protection of personal health information, as defined by applicable federal and state regulations; as well as the rules and regulations governing the federal Health Insurance Portability and Accountability Act.

Summary:

The Department of Mental Health may contract with an independent, nongovernmental entity to conduct client record reviews. The entity must comply with all federal and state privacy laws, including the federal Health Insurance Portability and Accountability Act, the Confidentiality of Medical Information Act, and Section 1798.81.5 of the Civil Code [businesses that own or license personal information about Californians must provide reasonable security for that information]. The entity shall be subject to existing penalties for violation of these laws. The entity cannot use, sell, or disclose client records for a purpose other than the one for which the record was given. “Client record” means a medical record, chart, or similar file.

Now viewing : Page 1 of 1 first     previous     next     last