Sec. 182.108. STANDARDS FOR ELECTRONIC SHARING OF PROTECTED HEALTH INFORMATION; COVERED ENTITY CERTIFICATION


Latest version.
  • (a) The corporation shall develop and submit to the commission for ratification privacy and security standards for the electronic sharing of protected health information.

    (b) The commission shall review and by rule adopt acceptable standards submitted for ratification under Subsection (a).

    (c) Standards adopted under Subsection (b) must be designed to:

    (1) comply with the Health Insurance Portability and Accountability Act and Privacy Standards and Chapter 181;

    (2) comply with any other state and federal law relating to the security and confidentiality of information electronically maintained or disclosed by a covered entity;

    (3) ensure the secure maintenance and disclosure of personally identifiable health information;

    (4) include strategies and procedures for disclosing personally identifiable health information; and

    (5) support a level of system interoperability with existing health record databases in this state that is consistent with emerging standards.

    (d) The corporation shall establish a process by which a covered entity may apply for certification by the corporation of a covered entity's past compliance with standards adopted under Subsection (b).

    (e) The corporation shall publish the standards adopted under Subsection (b) on the corporation's Internet website.

Added by Acts 2011, 82nd Leg., R.S., Ch. 1126 , Sec. 13, eff. September 1, 2012.