Erin Whaley, Brent Hoard and Emma Trivax of Troutman Pepper Locke LLP discuss legal risks and security threats for protected ...

By mandating encryption for both data at rest and in motion, the HHS intends to minimize the risk of data breaches and ...

HIPAA is the acronym for the Health Insurance Portability and Accountability Act that was passed by Congress into law in the year 1996. It is legislation that provides security provisions and data ...

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) rules create a framework to protect the medical privacy of patients and health plan members. In general, HIPAA privacy ...

On March 21, 2025, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement of HIPAA security rule claims involving Health Fitness Corporation ...

The HIPAA Privacy and Security Rules require covered entities (including healthcare providers and health plans) and their business associates to protect patient ...

Key Proposed Changes to the HIPAA Security Rule HHS has proposed extensive changes ... She advises companies on cybersecurity and privacy issues, with deep expertise in risk assessment, policy ...

Provide administrative, physical, and technical safeguards to ensure compliance with the HIPAA Security Rule Safeguard against anticipated threats to the security or integrity of protected electronic ...

OCR Acting Director Anthony Archeval underscored the significance of adhering to the HIPAA Security Rule’s Risk Analysis provision. “Conducting an accurate and thorough risk analysis is not ...

These breaches have evolved from isolated incidents into sophisticated, coordinated attacks threatening patient privacy and care ... major update to the HIPAA Security Rule since 2013.