The purpose of this document is to define roles and responsibilities that are essential to the implementation of Carnegie Mellon's Health Insurance Portability and Accountability Act Policy ("HIPAA ...

The security rule update, which would be the first since 2013, aims to clarify and provide more instruction on securing ...

Technology has changed significantly since the HIPAA Security Rule was last updated in 2013, the HHS' Office for Civil Rights ...

Correspondence included in the Office of the Inspector General report shows that the HHS Office for Civil Rights hoped to ...

Definitions of capitalized terms, unless otherwise defined herein, are set forth in Appendix A. Other terms not defined in this policy shall have the meanings defined in the HIPAA Regulations. It is ...

On January 6, 2025, the U.S. Department of Health and Human Services (“DHHS”) Office of Civil Rights (“OCR”) published a ...

Healthcare technology vendors that create, receive, maintain, or transmit protected health information are obligated under ...

Material updates to the HIPAA Security Rule could be on the way — affecting all HIPAA-regulated entities — for the first time ...

A new final federal rule modifying the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule is ...

The newly proposed HIPAA policy changes could have significant impacts on how MSPs and IT teams remain compliant with regulations. The NPRM proposes to strengthen the Security Rule’s standards and ...

While the department undertakes this rulemaking, the current HIPAA Security Rule remains in force, ensuring ongoing ...