“OIG Says Health IT Security Controls Lacking as ONC, Legal Expert Point to Existing HIPAA Rules"
Inside Health Policy, May 18, 2011
Daniel Gottlieb, discussing a new report by the HHS Office of Inspector General (OIG) concerning data security, said that OIG and the HHS Office of National Coordinator (ONC) should continue assisting covered entities to comply with current HIPAA security standards. “The OIG is calling for general health IT standards, that’s what the HIPAA security rule provided,” Mr. Gottlieb stated. “It is correct that there’s not a complete set of general health IT standards included in ONC regulations. The ONC did that purposefully because it felt that the HIPAA security standards address that need.”