Medical Spa Lawyer
Paddy Deighan, the Premier Medical Spa Lawyer

HIPAA policy should be reviewed and updated consistently. Many (most) healthcare facilities and vendors overlook this essential function. Now is a good time to review HIPAA policy because there are changes coming in 2024.

HIPAA was first enacted waaaay back in 1996. Much has changed. A lot will change in 2024 – including fines!! Going up!! In 2005, the government drafted the Health Industry Cybersecurity Practices (HICP) guidelines to provide healthcare organizations with recommendations and best practices for complying with HIPAA and protecting their patients’ data. Throughout the HICP’s history, these guidelines were largely self administered by entities. Entities were given advice on how to maintain cyber security and HIPAA compliance. This is changing.

HICP guidelines have been dramatically revised. It is prudent to review the changes and respond accordingly. Cyber security and cyber threats have become so complicated that is has become burdensome for healthcare entities and vendors to stay ahead of the threats. without expert guidance.

The goals of HIPAA have remain unchanged…protect patient information. However, the cyber security threats have increased and healthcare entities must be diligent to remain ahead of the threats and this typically requires expert guidance.