On January 5, 2020, HR 7898, became law amending the Health Information Technology for Economic and Clinical Health Act (HITECH Act), 42 U.S.C. 17931, to require that “recognized cybersecurity practices” be considered by the Secretary of Health and Human Services (HHS) in determining any Health Insurance Portability and Accountability Act (HIPAA) fines, audit results or mitigation remedies. The new law provides a strong incentive to covered entities and business associates to adopt “recognized cybersecurity practices” and risk reduction frameworks when complying ...
Blog Editors
Recent Updates
- At the Half: No Free Kicks in FDA’s 2026 Enforcement
- CMS Codifies Drug Price Negotiation Program—With Modifications for 2029
- Federal Embryo Adoption Program Raises Potential Legal Questions for Reproductive Health
- Vermont’s H. 583 Restricts Private Equity and Hedge Funds with Ownership and Controlling Interests from Interfering with Clinical Judgment of Health Care Providers
- DOJ’s Second National Health Care Fraud Takedown of the Second Trump Administration Heavily Targets Medicaid Fraud