Lexology December 31, 2024
Holland & Knight LLP

The U.S. Department of Health and Human Services (HHS) has issued an unpublished Notice of Proposed Rulemaking (NPRM)1 that strengthens the Health Insurance Portability and Accountability Act (HIPAA) Security Rule and, if finalized, will have a significant impact on the healthcare sector.

HHS observed that healthcare breaches can lead to harms far greater than those of breaches in other business sectors. In the announcement regarding the rules,2 HHS Deputy Secretary Andrea Palm indicated that the changes are designed in part to strengthen cybersecurity and that “[t]hese attacks endanger patients by exposing vulnerabilities in our health care system, degrading patient trust, disrupting patient care, diverting patients, and delaying medical procedures.” HHS Office for Civil Rights (OCR) Director Melanie Fontes Rainer stated,...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, HHS, HIPAA, Provider, Technology
Related Articles:
HHS Proposed Rule May Enhance HIPAA Security but Leaves AI Questions Open
Key components of the HHS Security Rule NPRM
HIPAA Security Rule Updates: New Business for Business Associates
HHS OCR Releases Proposed Updates to HIPAA Security Rule
Not 1, Not 2, but 6 Settlements

Share This Article