CMS Gets Heat Over Not Actively Enforcing HIPAA

To date the Centers for Medicare and Medicaid Services (CMS) has not actively pursued HIPAA Security Rule compliance. Instead they have depended upon complaints to drive their investigations. However, as this article nicely points out, depending upon patients and healthcare workers to complain about problems leaves MANY HIPAA non-compliance issues…including significant information security and privacy vulnerabilities…dangerously unknown…

CMS criticized for lax enforcement of HIPAA security rules: Agency officials disputed the OIG findings but agreed to enhance compliance-assurance activities.

Tags: , , , , , , , , , , ,

Leave a Reply