AAMC Joins Group Letter Requesting Rescission of HIPAA Proposed Security Rule

The AAMC joined several health organizations in a letter urging the Trump administration (PDF) to rescind the proposed rule “HIPAA Security Rule to Strengthen the Cybersecurity of Electronic Protected Health Information” and to engage with organizations to develop a more balanced approach that addresses cybersecurity concerns without imposing excessive burdens on the health care sector. While the letter expressed the group’s commitment to enhancing cybersecurity, it raised concerns with the impact the staggering costs and regulatory burden of this regulation would have on hospitals and health care systems, as well as the unreasonable timeline. The letter explained that the complexity and scope of the requirements would necessitate substantial investments in time, resources, and personnel to achieve compliance, diverting funds away from other critical areas, impacting patient care.  

The group expressed a commitment to working with the administration to find a solution that strengthens cybersecurity and safeguards patient information in the future. Comments on the proposed rule are due March 7 [refer to Washington Highlights, Jan. 10].