On October 2, the New York State Department of Health (NYSDOH) issued new cybersecurity regulations (Regulations) for all general hospitals in New York state (“hospitals”), creating a new Section 405.46 in Title 10 (Health)...more
12/11/2024
/ Amended Regulation ,
Compliance ,
Covered Entities ,
Cyber Incident Reporting ,
Cybersecurity ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Hospitals ,
Incident Response Plans ,
Information Management ,
PHI ,
Risk Assessment ,
Security and Privacy Controls ,
State Budgets ,
State Health Departments ,
Strategic Planning
On February 8, 2024, the U.S. Department of Health & Human Services (HHS) released a final rule modifying 42 CFR Part 2 (Part 2) provisions regarding the confidentiality of Substance Use Disorder (SUD) Patient Records. The...more
3/1/2024
/ Administrative Procedure ,
Business Associates ,
CARES Act ,
Compliance ,
Consent ,
Covered Entities ,
Data-Sharing ,
Department of Health and Human Services (HHS) ,
Final Rules ,
Health Care Providers ,
HIPAA Breach Notification Rule ,
HITECH Act ,
Information Sharing ,
Opioid ,
Patient Privacy Rights ,
PHI ,
Prior Authorization ,
Public Health ,
SAMHSA ,
Substance Abuse ,
Tribal Governments
As previously reported in this blog, on Dec. 6, 2023, the Department of Health and Human Services (HHS or the Department) released a “concept paper,” which laid out its vision of future action regarding healthcare...more