In 2019, over 750 healthcare providers were hit with an unprecedented barrage of ransomware attacks. Reflecting this risk-filled environment, H.R. 7898 (HIPAA Safe Harbor bill) was formally signed into law on January 5th. This bill amends the HITECH Act. It requires that the Department of Health and Human Services (HHS) incentivize organizations that implement the best cybersecurity practices known to meet their HIPAA obligations.
HIPAA Safe Harbor protections recognized that even if organizations implemented best security practices they might not prevent cyberattacks. Thus, it provides protections for those that have implemented appropriate security measures, along with demonstratable results, during the last 12 months.
Creating, assessing, and maintaining HIPAA-related documentation that meets the appropriate requirements and proof is hard to achieve.
Could your Practice prove that your security measures were adequately in place for the last 12 months? Does your self-assessment audits, policies and procedures, risk management documentation, and security measures comply?
Let us help you mitigate your risks.