Lexology December 31, 2024
Holland & Knight LLP

The U.S. Department of Health and Human Services (HHS) has issued an unpublished Notice of Proposed Rulemaking (NPRM)1 that strengthens the Health Insurance Portability and Accountability Act (HIPAA) Security Rule and, if finalized, will have a significant impact on the healthcare sector.

HHS observed that healthcare breaches can lead to harms far greater than those of breaches in other business sectors. In the announcement regarding the rules,2 HHS Deputy Secretary Andrea Palm indicated that the changes are designed in part to strengthen cybersecurity and that “[t]hese attacks endanger patients by exposing vulnerabilities in our health care system, degrading patient trust, disrupting patient care, diverting patients, and delaying medical procedures.” HHS Office for Civil Rights (OCR) Director Melanie Fontes Rainer stated,...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, HHS, HIPAA, Provider, Technology
Related Articles:
Pivot: Discussing the Impact of a Proposed HIPAA Security Update
Always Listening, Always Leaking?
Ensuring HIPAA Compliance in Telehealth Sessions
Navigating the 2024 proposed HIPAA security rule amendments
Proposed HIPAA Security Rule Requires AI Governance

Share This Article