2022 New Year’s Resolutions on Privacy and Security of Medical Information | Davis Wright Tremaine LLP
It’s that time of year again: a chance to sweep away your New Year’s resolutions for privacy and health information security. Here is some potential health information privacy and security resolutions for your consideration.
You can use these Annual, Quarterlyand Monthly lists to map out your privacy and security tasks for 2022, then check them off as you complete them. We’ve included empty rows so you can add your own resolutions.
In 2021, OCR completed its 25th HIPAA Right of Access Enforcement Action at 45 CFR § 164.524. We expect this enforcement trend to continue, which is why we have included a section focused on compliance with this provision.
As with all New Year’s resolutions, these are meant to represent potential best practices for the coming year. Failure to undertake or comply with one or more of these resolutions does not necessarily mean that you are not in compliance with HIPAA or other laws.
Additionally, this is not an exhaustive list of all legal and regulatory requirements. Checking all of these resolutions does not guarantee compliance. While this list is focused on health information privacy and security, we hope other industries will find it useful as well.