United States of America: Opened consultation on implementation of Health Insurance Portability and Accountability Act (HIPAA) via Cybersecurity Resource Guide

On 29 April 2021, the National Institute of Standards and Technology opened a public consultation on the Cybersecurity Resource Guide, implementing the Security Rule under the Health Insurance Portability and Accountability Act (HIPAA). The consultation remains open until 9 July 2021. NIST seeks feedback on various aspects, including how the guide informs readers about information security terms relevant to HIPAA, NIST and non-NIST cybersecurity resources and provides implementation guidance for covered entities and business associates. The NIST aims to gather information on how organisations currently implement the HIPAA Security Rule, manage compliance and cybersecurity, assess risks to ePHI, and ensure the effectiveness of security measures.