The CAP is raising concerns about the health care sector’s vulnerability to cyberattacks, emphasizing the need for robust federal data privacy and security standards.
Recent developments: House Energy and Commerce Committee Chair Brett Guthrie (R-KY) and Vice Chair John Joyce, MD, (R-PA) created a data privacy working group in February to explore federal data privacy and security framework parameters.
- The congressional working group asked stakeholders for suggestions as it considers legislation related to data privacy and security.
What CAP advocates: The CAP submitted its comments on April 7, calling for federal leadership to craft data privacy laws that account for different roles within the health care ecosystem.
- The big challenge in the aftermath of a cybersecurity incident is coordinating stakeholders across an entire health care system and ensuring patient safety and access to care. This necessitates federal leadership, guidance, and financial support.
- The intended outcome of any cybersecurity measure must be protection of patient care and patient data.
- Any federal privacy law should not supersede, duplicate, or contradict the Health Insurance Portability and Accountability Act (HIPAA) for the health care sector.
The bottom line: The CAP affirms that cybersecurity measures must offer greater protection and coordination across a vast health care system.