After year-long delay, latest version would provide guidance on secondary use of information in electronic health records and data from mobile applications.
The $3.5 million fine, for five breaches affecting 521 individuals, shows that the agency wants to teach a fresh lesson about the importance of HIPAA compliance.