The Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules are flexible and adaptable to the needs of covered entities. The Department of Health and Human Services’ Office for Civil Rights (OCR) enforces compliance through investigations, compliance reviews, education and outreach resources. Compliance can be enforced by reviewing past complaints, analysing risks, and providing technical assistance. The OCR also conducts regular audits to ensure compliance and improve cybersecurity of electronic protected health information.
41% of Third-Party Breaches in 2024 Targeted Healthcare Orgs
The healthcare sector accounted for 41.2% of third-party breaches in 2024, according to a report from Black Kite, marking it the most targeted industry. The
