During the 2024 legislative session, the Colorado General Assembly passed Senate Bill 24-205, which is known as the Colorado Artificial Intelligence Act (CAIA). This law will take effect on February 1, 2026, and requires...more
5/13/2025
/ Algorithms ,
Artificial Intelligence ,
Colorado ,
Consumer Protection Laws ,
Cybersecurity ,
Data Privacy ,
Disclosure Requirements ,
Emerging Technologies ,
Healthcare ,
New Legislation ,
Privacy Laws ,
Regulatory Requirements ,
Risk Management ,
Technology
In this week’s installment of our blog series on the U.S. Department of Health and Human Services’ (HHS) HIPAA Security Rule updates in its January 6 Notice of Proposed Rulemaking (NPRM), we are exploring the proposed updates...more
As discussed in our previous blog post, the Cybersecurity and Infrastructure Security Agency (CISA) is proposing a significant new rule to bolster the nation’s cyber defenses through mandatory incident reporting. While...more
7/22/2024
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Security ,
Healthcare ,
Hospitals ,
Manufacturers ,
NAM ,
Proposed Rules ,
Reporting Requirements
The healthcare sector is increasingly facing cyber-threats with ransomware and hacking at the forefront. In the last five years, there has been a staggering 256% rise in significant hacking-related breaches and a 264% surge...more
A recently introduced bill in the Florida Legislature would provide businesses operating in Florida, including health care providers, with a legal defense to data breach lawsuits if they maintain robust cybersecurity measures...more
1/25/2024
/ Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Security ,
Florida ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Legislative Agendas ,
New Legislation ,
New Regulations ,
NIST ,
Regulatory Agenda ,
Risk Management ,
Safe Harbors ,
State and Local Government ,
State Legislatures
The Department of Health & Human Services (HHS) released a concept paper outlining its strategy for improving cybersecurity infrastructure within the healthcare sector. The paper calls for proposing healthcare-specific...more
In July 2023, the Federal Trade Commission (FTC) and the U.S. Department of Health and Human Services Office of Civil Rights (OCR) sent a joint letter to approximately 130 hospital systems and telehealth providers raising...more
8/29/2023
/ Cybersecurity ,
Disclosure ,
Federal Trade Commission (FTC) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
HIPAA Breach Notification Rule ,
OCR ,
Risk Management ,
Technology Sector ,
Telehealth ,
Tracking Systems
In an age where digital connectivity is rapidly advancing, cybersecurity has become an inescapable concern for organizations across industries. With cyber threats ranging from data breaches to ransomware attacks, it is...more
8/15/2023
/ Cyber Incident Reporting ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Health Information Technologies ,
Healthcare ,
Long Term Care Facilities ,
Long-Term Care ,
Patient Privacy Rights ,
PHI ,
Risk Management