First few Article Sentences
With all the discussion about this year’s federal healthcare legislation, HIPAA Security compliance issues may seem like old news. Nonetheless, the list of substantial breach notifications posted on the website of the Department of Health and Human Services (HHS), Office of Civil Rights (OCR), along with developments in HIPAA enforcement and changes to NIST standards, demonstrates that securing protected health information (PHI) remains a worthy focus of risk-management resources for insurance entities, hospitals and health systems, and other organizations with large volumes of PHI.