2022 Health Information Privacy and Security New Year’s Resolutions


It’s that time of year again: your chance to erase your New Year’s resolutions on health information privacy and security. Here are some potential health information privacy and security resolutions to consider.

You can use these Annual, Quarterly, and Monthly lists to map your privacy and security tasks for 2022, then check off them as you complete them. We have included blank lines for you to add your own resolutions.

In 2021, OCR completed its 25th enforcement action regarding the HIPAA right of access to 45 CFR § 164.524. We expect this trend in enforcement to continue, so we’ve included a section focused on complying with this provision.

As with all New Years Resolutions, these are meant to represent potential best practices for the coming year. Failure to undertake or comply with one or more of these resolutions does not necessarily mean that you are in breach of HIPAA or other laws.

Additionally, this is not an exhaustive list of all legal and regulatory requirements. Checking all of these resolutions does not guarantee compliance. While this list focuses on health information privacy and security, we hope other industries will find it useful as well.


Comments are closed.