The purpose of this document is to define roles and responsibilities that are essential to the implementation of Carnegie Mellon's Health Insurance Portability and Accountability Act Policy ("HIPAA ...

The security rule update, which would be the first since 2013, aims to clarify and provide more instruction on securing ...

Correspondence included in the Office of the Inspector General report shows that the HHS Office for Civil Rights hoped to ...

Technology has changed significantly since the HIPAA Security Rule was last updated in 2013, the HHS' Office for Civil Rights ...

Definitions of capitalized terms, unless otherwise defined herein, are set forth in Appendix A. Other terms not defined in this policy shall have the meanings defined in the HIPAA Regulations. It is ...

On January 6, 2025, the U.S. Department of Health and Human Services (“DHHS”) Office of Civil Rights (“OCR”) published a ...

Healthcare technology vendors that create, receive, maintain, or transmit protected health information are obligated under ...

Material updates to the HIPAA Security Rule could be on the way — affecting all HIPAA-regulated entities — for the first time ...

The newly proposed HIPAA policy changes could have significant impacts on how MSPs and IT teams remain compliant with regulations. The NPRM proposes to strengthen the Security Rule’s standards and ...

While the department undertakes this rulemaking, the current HIPAA Security Rule remains in force, ensuring ongoing ...

Read more about the proposed rule to better defend individuals' electronic protected health information from cyberthreats.