No exact results. Similar results found.
@patrick_townsend@infosec.exchange2025-03-28 18:04:38
The Office of Civil Rights in the Department of Health and Human Services (HHS/OCR) used to do a fairly good job of protecting patient's sensitive information. They did this by enforcing the HIPAA security rules and penalties for non-compliance included fines, mandatory compliance programs, and CEO liability.
No longer.
HHS/OCR has now been weaponized to enforce anti-DEI initiatives of the current administration. Here is the recent headline from HHS/OCR:
"OCR Inve…