Post-Breach HIPAA Enforcement: A Call for ‘Safe Harbors’

Comments submitted to the Department of Health and Human Services run the gamut from suggesting that HHS’ Office for Civil Rights create new “safe harbors” to shelter certain organizations from breach-related HIPAA enforcement actions to better aligning other federal privacy regulations with the HIPAA rules.OCR’s December RFI sought feedback by Feb. 12 on a variety of potential changes to the HIPAA rules designed to reduce the “regulatory burden,” including ways to improve secure data sharing for patient care coordination (see: HHS Seeks Feedback on Potential HIPAA Changes).