Joint Letter to HHS on Change Healthcare Cyberattack and Reporting Responsibilities

Health organizations urge HHS to provide clarity on the enforcement of HIPAA-related reporting requirements involving the Change Healthcare cyber incident.

Chelsea Arnone

Change Healthcare; UnitedHealth Group; UHG; Optum; cyberattack; cybersecurity; electronic system; HHS; protected health information; PHI; personally identifiable information; PII; OCR; HIPAA; covered entity; breach; reporting requirements; breach; notification; ransomware

Mon, 05/20/2024 - 11:50 AM EDT

Thu, 05/30/2024 - 2:01 PM EDT

4

joint_letter_to_hhs_on_change_cyberattack_and_reporting_responsibilities_2024.pdf

{"Author":"Chelsea Arnone","Comments":"","Company":"","CreationDate":"2024-05-20T11:50:45-04:00","Creator":"Acrobat PDFMaker 24 for Word","Keywords":"Change Healthcare; UnitedHealth Group; UHG; Optum; cyberattack; cybersecurity; electronic system; HHS; protected health information; PHI; personally identifiable information; PII; OCR; HIPAA; covered entity; breach; reporting requirements; breach; notification; ransomware","ModDate":"2024-05-30T14:01:15-04:00","Producer":"Adobe PDF Library 24.2.23","SourceModified":"","Subject":"","Title":"Joint Letter to HHS on Change Healthcare Cyberattack and Reporting Responsibilities","Pages":4,"xmp:modifydate":"2024-05-30T14:01:15-04:00","xmp:createdate":"2024-05-20T11:50:45-04:00","xmp:metadatadate":"2024-05-30T14:01:15-04:00","xmp:creatortool":"Acrobat PDFMaker 24 for Word","xmpmm:documentid":"uuid:a0f10f3f-8744-4feb-b654-6e87d1881f9e","xmpmm:instanceid":"uuid:b6f6faa8-6d6a-4bf1-9093-124037fa60b7","xmpmm:subject":"2","dc:format":"application\/pdf","dc:title":"Joint Letter to HHS on Change Healthcare Cyberattack and Reporting Responsibilities","dc:description":"","dc:creator":"Chelsea Arnone","dc:subject":["Change Healthcare","UnitedHealth Group","UHG","Optum","cyberattack","cybersecurity","electronic system","HHS","protected health information","PHI","personally identifiable information","PII","OCR","HIPAA","covered entity","breach","reporting requirements","breach","notification","ransomware"],"pdf:producer":"Adobe PDF Library 24.2.23","pdf:keywords":"Change Healthcare; UnitedHealth Group; UHG; Optum; cyberattack; cybersecurity; electronic system; HHS; protected health information; PHI; personally identifiable information; PII; OCR; HIPAA; covered entity; breach; reporting requirements; breach; notification; ransomware"}

2024