HHS Issues Proposed Rule Aimed at Strengthening HIPAA Security Compliance

On January 6, 2025

On Dec. 27, 2024, the U.S. Department of Health and Human Services (HHS) released a proposed rule that would modify the HIPAA Security Rule to strengthen cybersecurity protections for electronic protected health information (ePHI). Although the changes are substantial, they are only in proposed form at this point. Employers with self-insured health plans and those […]

On September 3, 2024

The federal Department of Health and Human Services released updated penalty amounts for certain health plan violations that may occur on or after January 15, 2025. These penalty increases are separate from any penalty increases the federal Department of Labor may announce later this year for ERISA violations. The new penalty amounts by infraction are […]

HHS RELEASES NEW FINE STRUCTURES

On October 30, 2023

The federal Department of Health and Human Services recently released new inflation-adjusted penalty amounts for various federal requirements that impact employers who offer group health insurance coverage and health insurance issuers. The new fine levels relate to compliance with the Health Insurance Portability and Accountability Act’s (HIPAA) privacy and data security requirements, various Affordable Care […]

HHS Issues Proposed Rule Aimed at Strengthening HIPAA Security Compliance

Updated Federal Penalties for Health Plan Violations

HHS RELEASES NEW FINE STRUCTURES