Lexology January 2, 2025
Phelps Dunbar LLP

On December 27, 2024, for the first time in over a decade, the United States Department of Health and Human Services (HHS) issued a notice of proposed rulemaking to modify the HIPAA Security Rule (the NPRM) to bolster cybersecurity protections for electronic protected health information (ePHI). The HIPAA Security Rule, which establishes standards for the security of ePHI, was last updated in 2013. The NPRM generally applies to HIPAA-covered entities, including health plans, healthcare clearinghouses and most healthcare providers, as well as the business associates of covered entities (together, referred to as regulated entities). HHS states that the purpose of the NPRM is to “strengthen cybersecurity by updating the Security Rule’s standards to better address ever-increasing cybersecurity threats to the...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health System / Hospital, HHS, HIPAA, Provider, Technology
Related Articles:
Trump and primary care: Best ways to Make America Health Again
HHS job cuts mount: 5 notes
President Trump Establishes Make America Healthy Again Commission: Implications for Life Science, Journal Publications and Continuing Healthcare Education
Opinion: HHS’ national health security division must be preserved
Pharma and medtech industry reacts to FDA, CDC and NIH job cuts

Share This Article