On January 6, 2025, the U.S. Department of Health and Human Services (“DHHS”) Office of Civil Rights (“OCR”) published a ...

The Biden Administration’s Office for Civil Rights delivered on its promise to propose an update to the HIPAA Security Rule. Our Health Care ...

HHS proposes new HIPAA rules to combat rising cyber threats, including 72-hour data restoration, encryption mandates, and ...

If approved, the proposed new HIPAA rules will reshape the landscape of healthcare cybersecurity, partially addressing the recent OIG report’s findings on the ineffectiveness of current HIPAA audits.

Technology has changed significantly since the HIPAA Security Rule was last updated in 2013, the HHS' Office for Civil Rights ...

These changes to HIPAA, outlined in a Notice of Proposed Rulemaking (NPRM), aim to increase cybersecurity protections for ...

While the department undertakes this rulemaking, the current HIPAA Security Rule remains in force, ensuring ongoing ...

IAPP Cybersecurity Law Center Managing Director Jim Dempsey writes about the U.S. Department of Health Human Services' notice ...

Healthcare marketing presents a unique challenge While businesses in other sectors can target audiences with fewer restrictions healthcare organizations must comply with stringent regulations designed ...

Read more about the proposed rule to better defend individuals' electronic protected health information from cyberthreats.

Email is one of the most important means of communication for healthcare workers, however, while communicating sensitive ...

The CMS regulations, which were issued last January, require federally regulated health plans to "improve the electronic ...