Current through Register Vol. 63, No. 11, November 1, 2024
Section 943-120-0110 - Purpose(1) These rules establish requirements applicable to providers, CCOs, PHPs, and allied agencies that want to conduct electronic data transactions with the Authority. These rules govern the conduct of all web portal or EDI transactions with the Authority. These rules only apply to services or items that are paid for by the Authority. If the service or item is paid for by a plan or an allied agency, these rules do not apply.(2) These rules establish the Authority's electronic data transaction requirements for purposes of the Health Insurance Portability and Accountability Act of 1996, 42 USC 1320d-1320d-8, Public Law 104-191, sec. 262and sec. 264, and the implementing standards for electronic transactions rules. Where a federal HIPAA standard has been adopted for an electronic data transaction, this rule implements and does not alter the federal standard.(3) These rules establish procedures that must be followed by any provider, CCO, PHP, or allied agency in the event of a security or privacy incident, regardless of whether the incident is related to the use of an electronic data transaction.Or. Admin. Code § 943-120-0110
OHA 13-2011(Temp), f. & cert. ef. 7-1-11 thru 12-27-11; OHA 26-2011, f. 10-31-11, cert. ef. 11-1-11; OHA 4-2012(Temp), f. & cert. ef. 7-12-12 thru 1-6-13; OHA 7-2012, f. 10-9-12, cert. ef. 10-10-12Stat. Auth.: ORS 413.042 &414.065
Stats. Implemented: ORS 413.042 & 414.065