propoSedruLemakIngtoSIgnIfICantLyrevISehIpaaSeCurItyruLe
Health Care law Section Chairs : Elizabeth “ Beth ” Scarola – EpsteinBecker & Green , P . C . & RebeccaArendsSiviglia – MoffittCancerCenter
theproposedruleaddresses changesinhealthcareand technologyfollowingan increaseinransomware , data breaches , cyberattacks , and dataprivacyconcerns . on January 6 , 2025 , the United States department of Health and Human Services ( HHS ) office for Civil Rights ( oCR ) issued a Notice of Proposed Rulemaking that would modify the Security Rule of the Health Insurance Portability and Accountability Act ( HIPAA ). The proposed rule addresses changes in healthcare and technology following an increase in ransomware , data breaches , cyberattacks , and data privacy concerns . The Security Rule , which was implemented over 20 years ago , has had minimal revisions since its inception , and with the growing usage of technology within the healthcare industry , there is a need to update the federal regulations around patient data . Provided is a summary of the more significant proposed changes which may impact healthcare operations .
1 . The proposed rule includes various definition updates , including 10 new definitions
Continuedonpage41
4 0 M A r - A P r 2 0 2 5 | H C B A L A W Y E r