This final rule adopts standards for
the security of electronic protected health information to be
implemented by health plans, health care clearinghouses and certain
health care providers. The use of the security standards will
improve the Medicare and Medicaid programs, and other Federal
health programs, and private health programs, and the effectiveness
and efficiency of the health care industry in general by
establihsing a level of protection for certain electronic health
information.
Changes have been made to the
total burden hour estimates in this supporting statement; due to an
error in the previously approved ICR (for reinstatement and
transfer of the ICR from CMS/OESS to OCR), the ROCIS table and
supporting statement for this ICR did not match. As noted above, to
better reflect our experience, we make adjustments to the estimated
burden of compliance with the Security Rule in the new,
consolidated ICR (0945-0003), which we will submit shortly for
review.
$0
No
No
No
No
No
Uncollected
William Parham
4107864669
No
On behalf of this Federal agency, I certify that
the collection of information encompassed by this request complies
with 5 CFR 1320.9 and the related provisions of 5 CFR
1320.8(b)(3).
The following is a summary of the topics, regarding
the proposed collection of information, that the certification
covers:
(i) Why the information is being collected;
(ii) Use of information;
(iii) Burden estimate;
(iv) Nature of response (voluntary, required for a
benefit, or mandatory);
(v) Nature and extent of confidentiality; and
(vi) Need to display currently valid OMB control
number;
If you are unable to certify compliance with any of
these provisions, identify the item by leaving the box unchecked
and explain the reason in the Supporting Statement.