The US Department of Health & Human Services (HHS) is proposing new cybersecurity rules to enhance protection of electronic health information, addressing significant updates to HIPAA Security Rule. The proposed changes require mandatory implementation specifications, enhanced documentation, technology asset management, risk analysis and contingency plans. The public, as well as stakeholders, are invited to submit comments within 60 days of its publication.
NIST updates Privacy Framework with Version 1.1
The U.S. Department of Commerce aims to align its privacy and cybersecurity frameworks in response to rising cyberattacks. NIST’s PFW 1.1 draft updates privacy risk
