International Association of Privacy ProfessionalsOpinion

HIPAA's Security Rule meets quantum risk: A renovation that needs one more fix

Proposed changes to the HIPAA Security Rule mark the biggest update to healthcare data security in a decade, but while the ...
Healthcare Dive

Preparing for the 2026 HIPAA changes: A practical guide for healthcare leaders

Key Takeaways: HIPAA updates expected in 2026 will strengthen requirements to protect electronic protected health information (ePHI) and remove ambiguity regarding security safeguards. Enforcement ...
Hosted on MSN

HIPAA 2026 update to impose sweeping new security mandates

The 2026 HIPAA Security Rule update will introduce major new requirements, including universal encryption of electronic protected health information, multi-factor authentication, and annual security ...
JD Supra

E-mailing and Texting PHI: Beware HIPAA

The HIPAA Privacy and Security Rules require covered entities (including healthcare providers and health plans) and their business associates to protect patient ...
JD Supra

Major HIPAA Security Rule Changes on the Horizon: Is Your Healthcare Organization Ready?

This post is part of our The Top 2025 Privacy and Security Issues Still Shaping Healthcare series, in which our team of attorneys provides essential strategies and ...
HHS

Why the HIPAA Security Rule Proposal Draws Expert Concerns

While many of the proposed modifications to the HIPAA Security Rule are reasonable expectations, others will be extremely onerous to implement - especially within a short time frame - if federal ...
Becker's ASC

OCR Issues Proposed Modifications to HIPAA Privacy and Security Rules to Implement HITECH Act

Jennifer S. Geetter focuses on emerging biotechnology and safety issues, advising hospital, industry, insurance and provider clients on matters relating to research, drug and device development, ...
Hosted on MSN

2026 HIPAA rules mandate encryption and cultural change

Encryption becomes mandatory: AES‑256 encryption will be required for all ePHI at rest, with TLS 1.3 or higher for data in transit, removing previous flexibility. Beyond technical controls: ...
Law

Evaluating the Impact of Proposed Changes to the HIPAA Security Rule

In recent years, health care organizations and the vendors that support them have been prime targets for cyber attacks. Indeed, just last year, the ransomware attack on the health care clearinghouse ...
The National Law Review

Industry Groups Urge Rescission of Proposed HIPAA Security Rule Updates

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up for any (or all) of our 25+ Newsletters. Some states have laws and ethical rules regarding solicitation and ...
Purdue University

Compliance with HIPAA Privacy and Security Regulations (S-10)

Purdue University is a Hybrid Entity under the Health Insurance Portability and Accountability Act of 1996 (HIPAA). Purdue’s primary purpose is education; however, Purdue does have departments and ...
Compliance Week

The A to Z’s of HIPAA Privacy, Security, and Breach Notification Rules

Interested in writing for CW? Compliance Week accepts outside contributions from corporate chief compliance officers and other senior-level GRC practitioners. To learn more, contact the CW Editor.