Statutes, codes, and regulations
GENERAL LAWS OF MASSACHUSETTS
Part I - ADMINISTRATION OF THE GOVERNMENTTitle XVII - PUBLIC WELFARE
Chapter 118I - HEALTH INFORMATION TECHNOLOGY
Section 118I:12 - Unauthorized access to or disclosure of individual patent health information; reporting; notice to patient

Mass. Gen. Laws ch. 118I § 12

Download
PDF
Current through Chapter 223 of the 2024 Legislative Session
Section 118I:12 - Unauthorized access to or disclosure of individual patent health information; reporting; notice to patient

In the event of an unauthorized access to or disclosure of individually identifiable patient health information by or through the statewide health information exchange or by or through any technology grantees or implementing organizations funded in whole or in part from the e-Health Institute Fund established in section 6E of chapter 40J or the Massachusetts Health Information Exchange Fund established in section 10, the operator of such exchange or grantee or contractor shall: (i) report the conditions of such unauthorized access or disclosure as required by the executive office; and (ii) provide notice, as defined in section 1 of chapter 93H, as soon as practicable, but not later than 10 business days after such unauthorized access or disclosure, to any person whose patient health information may have been compromised as a result of such unauthorized access or disclosure, and shall report the conditions of such unauthorized access or disclosure. Any unauthorized access or disclosures shall be punishable by the civil penalties under section 16.

Mass. Gen. Laws ch. 118I, § 12

Added by Acts 2012, c. 224,§ 134, eff. 11/4/2012.