Lexology January 24, 2025
McGuireWoods LLP

In response to increased cybersecurity threats and significant regulatory enforcement actions, on Dec. 27, 2024, the Department of Health and Human Services (HHS) issued a Notice of Proposed Rulemaking seeking to enhance cybersecurity protections under the Security Rule implemented pursuant to the Health Insurance Portability and Accountability Act of 1996 (HIPAA). While the proposed rule is an important component of HHS’ ongoing effort to enhance cybersecurity requirements, many of the proposals raise significant new questions regarding HHS’ expectations. If adopted, the sweeping changes could have a significant impact on the way covered entities and business associates conduct business, including with each other.

Many of the proposed changes are unlikely to be controversial, such as the conversion of many “addressable” security...

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: AI (Artificial Intelligence), Cybersecurity, Govt Agencies, HHS, HIPAA, Technology
Related Articles:
STAT+: 9 influencers shaping health information online, for better or worse
Charted: Where measles is surging (again)
Flu Season Is a Stress Test. Our Healthcare System Keeps Failing.
SAMHSA Announces $231M Funding for 988 Suicide and Crisis Lifeline Expansion
Opinion: Our podcast ‘Why Should I Trust You?’ connects MAHA and public health. Here’s what we’ve learned

Share Article