The United States is proposing new rules to increase the security of health data. These proposed rules by the US Departme of Health and Human Services include things like encryption, multi-factor autheication and other measures to protect patie data.
According to Tekna Technology News Media Health Service, the Office of Civil Rights (OCR) of the US Departme of Health and Human Services has proposed new cybersecurity requiremes for healthcare organizations in order to protect paties’ private data from cyber attacks. The proposed rules come in the wake of widespread cyberattacks, such as the one against UnitedHealth earlier this year that exposed the private information of more than 100 million paties. These attacks indicate a serious vulnerability in health data protection systems and the need to take more serious measures to deal with these threats.
The Civil Rights Office’s proposal includes requiring health care organizations to use multi-factor autheication in most cases, segmeing their networks to reduce the risk of irusions spreading from one system to another, and encrypting patie data in such a way that, even if stolen, it is possible to access They don’t exist. These measures significaly increase the security level of sensitive patie data and preve possible abuses. Also, the proposal would require regulated eities to perform certain risk analysis and compliance documeation actions. These measures help organizations to coinuously assess and improve their security posture.
The law is part of the cyber security strategy that the Biden administration announced last year. Once finalized, the law would update the “security law” of the Health Insurance Portability and Accouability Act of 1996 (HIPAA), which regulates doctors, nursing homes, health insurance companies and others, and was last updated in 2013. will do This update seemed necessary due to the advanceme of technology and the increase in cyber threats.
US Deputy National Security Adviser Anne Neuberger estimated the cost of implemeing these requiremes at “about $9 billion in the first year and $6 billion in years two through five.” This figure represes a significa governme investme to improve health data security. The proposal is scheduled to be published in the Federal Register on January 6, which will begin a 60-day public comme period before a final rule is made. This opportunity is given to the general public and experts in this field to provide their opinions and suggestions about this law. This will help to improve and complete the final law. To see other news, refer to Tekna Media Technology medical news page.
