AHA urges OCR to expedite regulatory relief for certain cybersecurity practices

Nov 16, 2021 - 08:43 AM
Cybersecurity Lock on Gold Wall

The AHA today urged the Department of Health and Human Services’ Office for Civil Rights to quickly initiate rulemaking for a legislative provision (H.R. 7898) enacted by Congress this year to recognize certain recommended security practices when making determinations related to Health Insurance Portability and Accountability Act audits, fines and resolution agreements.

“The law appropriately recognizes that covered entities and business associates, like all entities including the Federal Government, can never fully eliminate the risk of cyberattacks,” AHA wrote. “When the inevitable attack occurs, entities should not be penalized, but rather treated as the victims of a crime. The law translates this concept by allowing certain measures of regulatory relief if the HIPAA-covered entity or business-associate victim had in place federally recognized security practices, such as those defined under the National Institute of Standards and Technology (NIST) Cybersecurity Framework and developed under Section 405(d) of the Cybersecurity Act of 2015.”
 

Related News Articles

Headline
Administration releases memo on cybersecurity governance for national security systems
President Trump issued a memorandum June 12 on cybersecurity governance for national security systems used by federal agencies. The memo re-establishes and…
Headline
AHA provides input on price transparency legislation for House subcommittee hearing 
The AHA provided a statement to the House Energy and Commerce Subcommittee on Health today for a hearing titled “Lowering Health Care Costs for All Americans:…
Headline
Automatic tank gauge systems targeted by cyber actors, agencies warn
The Cybersecurity and Infrastructure Security Agency and other federal agencies released a fact sheet June 2 on malicious cyber activity targeting U.S.-based…
Headline
House Appropriations Committee releases FY 2027 appropriations bill 
The House Appropriations Committee June 4 released the fiscal year 2027 appropriations bill for the Departments of Labor, Health and Human Services, Education…
Headline
Alert warns of cyber campaign by Chinese military intelligence to obtain classified or privileged information
The FBI and international agencies have released an alert on Chinese military intelligence services using professional networking sites and online job…
Headline
White House issues executive order on cybersecurity for AI
The White House issued an executive order June 2 on cybersecurity efforts regarding artificial intelligence. The order instructs federal…