OCR Proposes Major HIPAA Security Rule Overhaul Amid Cyber Threats
HIPAA Journal
|
Contributed by: Drex DeFord
Summary
Management Executives argue that the proposed updates to the HIPAA Security Rule could impose excessive compliance burdens on healthcare organizations. The Office for Civil Rights released a notice of proposed rulemaking on January 6, 2025, aimed at strengthening cybersecurity measures, following voluntary guidelines deemed insufficient. Despite the need for improved security in light of increasing threats, feedback during the comment period highlighted concern over timelines and financial impacts, prompting industry associations to request the withdrawal of the NPRM.
