Lexology January 2, 2025
Phelps Dunbar LLP

On December 27, 2024, for the first time in over a decade, the United States Department of Health and Human Services (HHS) issued a notice of proposed rulemaking to modify the HIPAA Security Rule (the NPRM) to bolster cybersecurity protections for electronic protected health information (ePHI). The HIPAA Security Rule, which establishes standards for the security of ePHI, was last updated in 2013. The NPRM generally applies to HIPAA-covered entities, including health plans, healthcare clearinghouses and most healthcare providers, as well as the business associates of covered entities (together, referred to as regulated entities). HHS states that the purpose of the NPRM is to “strengthen cybersecurity by updating the Security Rule’s standards to better address ever-increasing cybersecurity threats to the...

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health System / Hospital, HHS, HIPAA, Provider, Technology
Related Articles:
STAT+: 9 influencers shaping health information online, for better or worse
Charted: Where measles is surging (again)
Flu Season Is a Stress Test. Our Healthcare System Keeps Failing.
SAMHSA Announces $231M Funding for 988 Suicide and Crisis Lifeline Expansion
Opinion: Our podcast ‘Why Should I Trust You?’ connects MAHA and public health. Here’s what we’ve learned

Share Article