Hospitals say new cyber law will prevent duplicative requirements

The nation's hospital managers are pointing to the recently enacted Cybersecurity Act as a way to help the healthcare industry avoid duplicative data-security requirements to protect patient records.

The American Hospital Association, in comments to the National Institute of Standards and Technology on its framework of cybersecurity standards, argues that the “federal government must be aware of the existing privacy rules specific to health care.”

AHA said the NIST framework needs to be “cross-walked” with requirements under the Health...