Top Healthcare Cybersecurity, Privacy Predictions for 2025
Healthcare privacy attorney Shannon Hartsfield was quoted in a TechTarget article exploring cybersecurity and privacy stories to watch in the sector in 2025. Ms. Hartsfield commented on the expanding role of artificial intelligence (AI) in healthcare, emphasizing the increasing importance of security and privacy protections. Both cybercriminals and security professionals have begun to harness AI for their needs, a trend expected to continue in the new year. Ms. Hartsfield warned that AI remains a driver for innovation in healthcare, but privacy risks such as those implicated by the Health Insurance Portability and Accountability Act (HIPAA) cannot be ignored.
"Developers of AI tools will have an increasing need for data to train large language models, but regulators have concerns about using personal data in that manner," she said. "Also, HIPAA imposes restrictions that could impede such uses."
Alongside efforts to boost cyber resilience and advance AI, lawmakers are expected to keep introducing privacy and security legislation at both the state and federal levels. An update to the HIPAA Security Rule is anticipated by the end of 2024 or early 2025, following a draft submission, which is now under review.
"The HIPAA Security Rule was finalized over two decades ago, and security capabilities and threats have changed tremendously," Ms. Hartsfield explained. "The Security Rule is flexible and scalable, but it would be helpful to have more guidance aimed at today's technology."
READ: Top Healthcare Cybersecurity, Privacy Predictions for 2025