Compliance & Legal
It will underpin the interoperable connection between My Health Record and aged care digital care management systems.
The American Hospital Association is applauding the Office for Civil Rights for opting not to appeal a district court decision that vacated its recent rule regulating online tracking technologies.
HHS has said the revised March bulletin was consistent with HIPAA's definition of individually identifiable health information.
The proposal seeks to promote more effective use of healthcare technologies by ensuring they meet standards and implementation specs adopted by ASTP/ONC.
The HSA company says it has discovered "unauthorized access to and potential disclosure of protected health information and/or personally identifiable information stored in an unstructured data repository outside our core systems."
The plaintiffs claim that Change failed to implement cybersecurity safeguards such as multifactor authentication.
Some industry leaders are concerned about compliance time frames. Others say unstructured data won't be tapped to its fullest potential under the proposed rule.
Writing to the health secretary and the deputy national security advisor, the lawmaker cited recent cyber hygiene failures by healthcare organizations and asked the agency to propose mandatory minimum cyber standards already under consideration.
The defendants allegedly caused the hospital to pay vendors for goods and services they knew had not been provided.
While the healthcare group "strongly supports" CIRCIA's security goals, it's urging the Homeland Security agency to "consider the challenges covered entities face during and immediately after experiencing a cyberattack."
