On January 17, 2013, the U.S. Department of Health and Human Services issued its long-awaited Omnibus Rule, changing a broad range of HIPAA privacy, security and breach notification requirements. Every organization involved in healthcare—from providers to plans—will have to revise its ...