Lexology January 2, 2025
Phelps Dunbar LLP

On December 27, 2024, for the first time in over a decade, the United States Department of Health and Human Services (HHS) issued a notice of proposed rulemaking to modify the HIPAA Security Rule (the NPRM) to bolster cybersecurity protections for electronic protected health information (ePHI). The HIPAA Security Rule, which establishes standards for the security of ePHI, was last updated in 2013. The NPRM generally applies to HIPAA-covered entities, including health plans, healthcare clearinghouses and most healthcare providers, as well as the business associates of covered entities (together, referred to as regulated entities). HHS states that the purpose of the NPRM is to “strengthen cybersecurity by updating the Security Rule’s standards to better address ever-increasing cybersecurity threats to the...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health System / Hospital, HHS, HIPAA, Provider, Technology
Related Articles:
Healthcare CIOs Prepare For HIPAA Update
5 healthcare positions of RFK Jr.
Trump’s chronic disease divide
HHS proposes HIPAA update to boost healthcare cybersecurity
HHS Announces Notice of Proposed Rulemaking to Update the HIPAA Security Rule

Share This Article