Our Health Care and Privacy, Cyber & Data Strategy groups review the status of the proposed update to the HIPAA Security Rule. The proposed changes to the HIPAA ...

The long-overdue final HIPAA omnibus rule was posted on the Federal Register public inspection desk Jan 17. The package of regulations will be officially posted on the Federal Register on Jan. 25. See ...

Doctors in a meeting (Getty Images) The Department of Health and Human Services is responding to a growing threat of cyberattacks against the healthcare industry. Healthcare was the most breached ...

While many of the proposed modifications to the HIPAA Security Rule are reasonable expectations, others will be extremely onerous to implement - especially within a short time frame - if federal ...

The proposed update to strengthen the cybersecurity of electronic protected health information fails to account for "information technology complexities of modern health care delivery organizations" ...

The January 2026 OCR Cybersecurity Newsletter is the U.S. Department of Health and Human Services Office for Civil Rights’ latest installment in its periodic series translating HIPAA Security Rule ...

The Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996 to protect sensitive health information from being disclosed without patients' consent. Under this act, a patient's ...

The OIG recently completed its review of CMS’s oversight with regard to HIPAA Security, and the result is alarming. OIG had some harsh words for CMS’s efforts, saying it has taken “limited actions,” ...

Proposed legislation that's been kicking around Congress for the last few years that aims to help bolster cybersecurity of the healthcare sector cleared a critical ...

The Office of the National Coordinator for Health Information Technology (ONC), HHS Office for Civil Rights (OCR) and the HHS Office of the General Counsel (OGC), c0-developed a free mobile app and ...

The Covered Components and individuals who work in any of the Covered Components listed on the HIPAA Compliance website, are affected by this policy. Purdue University is a Hybrid Entity under the ...

A practical guide to Outlook HIPAA compliance. Learn encryption requirements, configuration steps, and when to choose dedicated HIPAA email solutions.