On December 27, 2024, the Department of Health and Human Services proposed a new HIPAA Security Rule (“the Proposed Rule”). The Proposed Rule is significant in scope, retains the current Security Rule’s requirements for “reasonable” safeguards while making many specific practices required visa-vi HIPAA’s implementation specifications, requires the implementation of several industry standard practices (e.g. … Continue reading The Proposed HIPAA Security Rule: The Good, the Bad, and What You Can Do →