Lexology February 6, 2025
Squire Patton Boggs

Summary

On December 27, 2024, the U.S. Department of Health and Human Services, Office for Civil Rights (“HHS”) published its Notice of Proposed Rulemaking (“NPRM”) titled HIPAA Security Rule to Strengthen the Cybersecurity of Electronic Protected Health Information. HHS seeks comments on proposed modifications to the Security Standards for the Protection of Electronic Protected Health Information comprising 45 C.F.R. Parts 160 and 164, Subpart C, commonly known as the “Security Rule”, to address modern breach and cybersecurity risks to electronic protected health information (“ePHI”)[1] and common deficiencies observed by HHS in Security Rule compliance investigations, and to incorporate current industry best practices[2] and court decisions affecting enforcement of the Security Rule[3].[4] As summarized below, the proposed modifications signal HHS’s commitment...

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, HHS, HIPAA, Technology
Related Articles:
STAT+: 9 influencers shaping health information online, for better or worse
Charted: Where measles is surging (again)
Flu Season Is a Stress Test. Our Healthcare System Keeps Failing.
SAMHSA Announces $231M Funding for 988 Suicide and Crisis Lifeline Expansion
Opinion: Our podcast ‘Why Should I Trust You?’ connects MAHA and public health. Here’s what we’ve learned

Share Article