This is a clone of the Texas Administrative Code (TAC) for educational purposes. It is not the official version and should not be used for legal purposes. Site created Wed, 21 May 2025 21:16:36 GMT

Home > Title 1 > Part 15 > Chapter 390 >Subchapter A > Rule 390.2
TITLE 1 - ADMINISTRATION
PART 15 - TEXAS HEALTH AND HUMAN SERVICES COMMISSION
CHAPTER 390 - INFORMATION PRACTICES
SUBCHAPTER A - STANDARDS RELATING TO THE ELECTRONIC EXCHANGE OF HEALTH INFORMATION
SECTION/RULE §390.2 - Standards
Chapter Review Date 09/23/2024

(a) A covered entity that electronically exchanges, uses, or discloses PHI, at a minimum, must comply with the following standards for confidential information in any form, to the extent applicable:(1) HIPAA Privacy, Security and Breach Notification Regulations;(2) the Texas Medical Records Privacy Act, Chapter 181 of the Texas Health and Safety Code;(3) the Texas Identity Theft Act, Chapter 521 of the Texas Business and Commerce Code; and(4) any other applicable state or federal law or regulation that requires that confidential information be safeguarded, used, or disclosed only for authorized purposes by authorized users, including without limitation:(A) requirements applicable to the following specific types of data:(i) Cancer: Texas Health and Safety Code §82.008 and §82.009;