Title
Resolution Relative to Adopting a HIPAA Notification of Breach of Unsecured Protected Health Information Policy.
Body
WHEREAS, the Health Information Technology for Economic and Clinical Health Act (HITECH), which is part of the American Recovery and Reinvestment Act of 2009 (ARRA), mandated breach notification requirements for covered entities when impermissive or unauthorized access, acquisition, use and/or disclosure of unsecured protected health information occurs under the Privacy Rule of the Health Insurance Portability and Accountability Act (HIPAA).
WHEREAS, the above-referenced regulations require the City of West Allis, as a covered entity, to implement a policy governing discovery, internal reporting and notification when a breach of unsecured protected health information occurs.
NOW, THEREFORE, BE IT RESOLVED by the Common Council of the City of West Allis that the attached HIPAA - Notification of Breach of Unsecured Protected Health Information Policy, with its attachments, be and is hereby approved for inclusion in the City's Policies & Procedures Manual.
BE IT FURTHER RESOLVED that the City Administrative Officer is authorized and directed to include the policy in the City of West Allis Policies & Procedures Manual and to distribute said policies to all departments, divisions, and offices.
ATTR-Resolution-HIPAA Notification of Breach of Unsecured PHI