The HIPAA Security Rule has remained largely unchanged for over 15 years. In the final days of the Biden Administration, the Office for Civil Rights (OCR) issued a proposed rule to significantly revise and modernize the Security Rule. This update responds to growing cybersecurity threats—such as ransomware, hacking, and other forms of data breaches—and aims to align compliance standards with current technological realities. The proposed changes impose more stringent and specific requirements on covered entities and business associates to safeguard electronic protected health information (ePHI).
This program is designed to help attorneys, compliance professionals, and technology advisors better support healthcare providers and organizations in understanding and meeting the expanded requirements of the proposed HIPAA Security Rule. Attendees will gain insights into key changes, practical compliance strategies, and how to prepare for increased enforcement activity in this evolving regulatory landscape.
· Introduction & Background
· Overview of the Proposed Revisions
· Addressing Modern Threats and Technologies
· Operational Impacts and Common Compliance Challenges
· Next Steps and Resources
Attorneys, in-house counsel, Privacy officers, Security officers
Adam H. Laughton guides health care providers and other parties through the complexities of health care transactions, including inevitable regulatory questions, licensing, payor enrollment and many other issues. Adam has handled transactions involving a wide variety of providers and facilities, including hospitals, ambulatory surgery centers, behavioral health providers and freestanding emergency rooms, as well as physician practices and other entrepreneurs in the health care space. These transactions have included deals as large as $1 billion, and are located in a wide variety of locations around the United States.
Adam’s experience also includes regulatory and compliance matters, such as HIPAA, Stark/Anti-Kickback, False Claims Act, and state law issues. He advises businesses on corporate and transactional matters ranging from reorganizations and mergers to the development of complex organizational and contractual structures and joint ventures. Adam has advised companies in many stages of their lifecycle on both regulatory and transactional issues, including start-up companies utilizing machine learning and artificial intelligence regarding applications of HIPAA to their operations.
As part of his work with health care providers and in conjunction with his transactional and regulatory work, Adam assists providers with internal investigations of compliance matters, including False Claims Act investigations and Stark self-disclosures to the OIG. Adam has worked with providers dealing with payor audits and other reimbursement issues, including Medicare appeals and No Surprises Act disputes.
Live Webinar -
Healthcare Enforcement 2025 Update: Stark, Anti-Kickback and False Claims Act