HHS’ Office for Civil Rights Release Final Version of Special Publication (SP) 800-66 Revision 2, Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide.
| |

HHS’ Office for Civil Rights Release Final Version of Special Publication (SP) 800-66 Revision 2, Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide.

The HHS Office for Civil Rights (OCR) and the National Institute of Standards and Technology (NIST) are pleased to announce the publication of the final version of Special Publication (SP) 800-66 Revision 2, Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide This revised publication, a collaborative effort between NIST and…

HHS’ Office for Civil Rights Settles Malicious Insider Cybersecurity Investigation for $4.75 Million
| |

HHS’ Office for Civil Rights Settles Malicious Insider Cybersecurity Investigation for $4.75 Million

Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Montefiore Medical Center, a non-profit hospital system based in New York City for several potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. The “OCR is responsible for administering and enforcing health…

HHS Unveils Healthcare Cybersecurity Performance Goals
| |

HHS Unveils Healthcare Cybersecurity Performance Goals

Related to the previous post, “HHS Unveils Healthcare Cybersecurity Strategy” the Department of Health and Human Services recently released the voluntary healthcare cybersecurity goals healthcare organizations should strongly consider implementing. The following article by HealthITSecurity includes links to the paper as well as links to valuable information that may help your center with cybersecurity. The…

HHS Unveils Healthcare Cybersecurity Strategy
| |

HHS Unveils Healthcare Cybersecurity Strategy

The Department of Health and Human Services plan to strengthen healthcare cybersecurity is outlined in a new concept paper. The outline paper includes future updates to HIPAA and the establishment of voluntary performance goals. The following article by HealthITSecurity includes links to the paper as well as links to valuable information that may help your…

HHS RESOLVES PHISHING ATTACK INVESTIGATION
| |

HHS RESOLVES PHISHING ATTACK INVESTIGATION

Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Lafourche Medical Group, a Louisiana medical group specializing in emergency medicine, occupational medicine, and laboratory testing. The settlement resolves an investigation following a phishing attack that affected the electronic protected health information of approximately 34,862 individuals. Phishing…

Updated Security Risk Assessment Tool 3.4 Now Available
| | |

Updated Security Risk Assessment Tool 3.4 Now Available

The Office for Civil Rights (OCR) and the Office of the National Coordinator for Health Information Technology (ONC) at the U.S. Department of Health and Human Services (HHS) announced the release of version 3.4 of the Security Risk Assessment (SRA) Tool. This is the same tool discussed at several conferences this year. Please use the…

HHS Cybersecurity Task Force Provides New Resources to Help Address Rising Threat of Cyberattacks in Health and Public Health Sector
| | |

HHS Cybersecurity Task Force Provides New Resources to Help Address Rising Threat of Cyberattacks in Health and Public Health Sector

On April 17th, “The U.S. Department of Health and Human Services (HHS) 405(d) Program announced the release of the following resources to help address cybersecurity concerns in the Healthcare and Public Health (HPH) Sector: These efforts are a key part of the Administration’s work to secure all of our Nation’s critical infrastructure from cyber threats….

RFI HIPAA Privacy Rule
| | | |

RFI HIPAA Privacy Rule

On April 12th, the Office of Health and Human Services (HHS) published a Notice of Proposed Rule Making (NPRM) to seek comments regarding modifications to the HIPAA Privacy Rule ‘to support reproductive healthcare and privacy.’ Don’t let the misleading intentions lead you to believe this is a positive move for healthcare, much less for reproductive…

Abortion and EMTALA?

Abortion and EMTALA?

The Emergency Medical Treatment and Labor Act, or EMTALA was enacted in 1986. EMTALA ensures public access to emergency services regardless of a person’s ability to pay. EMTALA applies to licensed hospitals under state law that participate in the Medicare program and operates a dedicated emergency department. These hospitals are obligated to provide a medical…

HHS Announces Proposed Rule to Strengthen Nondiscrimination in Health Care

HHS Announces Proposed Rule to Strengthen Nondiscrimination in Health Care

The Department of Health and Human Services continues to broaden its reach and impact through civil rights enforcement. You can download the 308 page proposed rule that was released July 25, 2022 here. The Department of Health and Human Services (HHS) announced a proposed rule that implements Section 1557 of the Affordable Care Act, which…

Statement by HHS Secretary Xavier Becerra on President Biden’s Executive Order to Protect Access to Reproductive Health Care
|

Statement by HHS Secretary Xavier Becerra on President Biden’s Executive Order to Protect Access to Reproductive Health Care

This article is taken directly from an email received from the Department of Health and Human Services as a way to keep you up to date regarding the actions taken by HHS and the OCR in regards to the overturning of Roe v. Wade. The U.S. Department of Health and Human Services (HHS) Secretary Xavier…

HHS Issues Guidance to Protect Patient Privacy in Wake of Supreme Court Decision on Roe
| |

HHS Issues Guidance to Protect Patient Privacy in Wake of Supreme Court Decision on Roe

This article is taken directly from an email received from the Department of Health and Human Services as a way to keep you up to date regarding the actions taken by HHS and the OCR in regards to the overturning of Roe v. Wade. HHS Issues Guidance to Protect Patient Privacy in Wake of Supreme…