March 7, 2025
Thank you for the opportunity to address changes in the NPRM, HIPAA Security Rule To Strengthen the Cybersecurity of Electronic Protected Health Information. These proposals represent the first significant revision of the HIPAA Security Rule in over a decade, addressing the increased risks posed by advancements in technology and the rise in cyberattacks targeting healthcare data. While the American Medical Informatics Association (AMIA) acknowledges the critical need to safeguard electronic protected health information (ePHI), we want to emphasize the necessity of addressing key challenges to ensure the proposed regulations are both effective and feasible for implementation.