Lexology February 6, 2025
Squire Patton Boggs

Summary

On December 27, 2024, the U.S. Department of Health and Human Services, Office for Civil Rights (“HHS”) published its Notice of Proposed Rulemaking (“NPRM”) titled HIPAA Security Rule to Strengthen the Cybersecurity of Electronic Protected Health Information. HHS seeks comments on proposed modifications to the Security Standards for the Protection of Electronic Protected Health Information comprising 45 C.F.R. Parts 160 and 164, Subpart C, commonly known as the “Security Rule”, to address modern breach and cybersecurity risks to electronic protected health information (“ePHI”)[1] and common deficiencies observed by HHS in Security Rule compliance investigations, and to incorporate current industry best practices[2] and court decisions affecting enforcement of the Security Rule[3].[4] As summarized below, the proposed modifications signal HHS’s commitment...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, HHS, HIPAA, Technology
Related Articles:
Trump and primary care: Best ways to Make America Health Again
HHS job cuts mount: 5 notes
President Trump Establishes Make America Healthy Again Commission: Implications for Life Science, Journal Publications and Continuing Healthcare Education
Opinion: HHS’ national health security division must be preserved
Pharma and medtech industry reacts to FDA, CDC and NIH job cuts

Share This Article