WEBINAR | ON-DEMAND

Cyber Scaries for 2025: Updates on HIPAA and 42 Part 2 Risks, Penalties and Proposed Rules

On-Demand
Originally aired November 6, 2025
January 21, 2026 at 1:00 pm (EDT)

Additional Information

Overview
Learning Objectives
Audience
Instructor
Format
Cyber Scaries for 2025: Updates on HIPAA and 42 Part 2 Risks, Penalties and Proposed Rules

This spooky season, join Powers Law for updates on all the cyber scaries!

We’ll uncover the latest enforcement actions under the HIPAA Security Rule, including the Office for Civil Rights (OCR)’s recent initiatives targeting ransomware and security risk analyses. We’ll also shine a (flash)light on 42 CFR Part 2 (“Part 2”)—the federal regulations protecting substance use disorder records—and what to expect now that the Secretary of HHS has delegated Part 2 enforcement to OCR. (Hint: OCR now has the power to investigate, negotiate settlement agreements and corrective action plans, and impose penalties.) Finally, we’ll share the latest updates on proposed changes to the HIPAA Security Rule and the new requirements under Part 2.

Throughout the presentation, we’ll offer practical “tricks” and compliance “treats” to keep risks from coming back to haunt your health center. Join us… if you dare!
  • CEOs
  • COOs
  • Compliance Officers
  • Risk Managers
  • Privacy Officers
  • Security Officers
  1. Revise your health center’s security risk analysis process to meet OCR’s expectations as outlined in recent settlement actions
  2. Identify necessary updates to your health center’s breach reporting policies and procedures to comply with new Part 2 requirements
  3. Understand the proposed changes to the HIPAA Security Rule
Dianne Pledgie

Principal

Dianne advises health care and non-profit organizations on the development and implementation of robust compliance programs.

Dianne also provides legal guidance on privacy, security and confidentiality matters, with particular focus on Health Insurance Portability and Accountability Act (HIPAA), 42 C.F.R. Part 2 and the Information Blocking Rule, including:
  • Advising clients on their obligations to protect patient records, respond to patient requests, and develop policies and procedures;
  • Reviewing business associate agreements, data use agreements, and patient consents related to the use and disclosure of protected health information and sensitive information; and
  • Supporting clients experiencing security incidents.
  • This is a 60-minute on-demand webinar session.
  • The live version of this webinar originally aired on November 6, 2025.