HIPAA Safe Harbor Bill Becomes Law; Requires HHS to Incentivize Security
“The HIPAA Safe Harbor bill amends the HITECH act to require the Department of Health and Human Services to incentivize best practice cybersecurity for meeting HIPAA requirements,” reports Jessica Davis in Health It Security’s News.
“The Senate unanimously passed the legislation without amendment on December 19.”
“The legislation directs HHS to take into account a covered entity’s or business associate’s use of industry-standard security practices within the course of 12 months, when investigating and undertaking HIPAA enforcement actions, or other regulatory purposes.”