What is the HIPAA Security Rule?


The HIPAA Security Rule deals with electronic personal health information (EPHI) and has established a set of national standards for ePHI that is created, received, used, or maintained by an organization. The Security Rule requires appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of ePHI.

What is the Breach Notification Rule?


The HIPAA Privacy Rule created a set of national standards to protect individuals’ health information and medical records. The rule also creates a standard for individual privacy rights to control and understand how their health information will be used. Within HHS, the Office for Civil Rights (OCR) has a responsibility for implementing and enforcing the Privacy Rule and may impose civil money penalties for those failing to comply with the Privacy Rule.

What is the HIPAA Privacy Rule?


The HIPAA Privacy Rule created a set of national standards to protect individuals’ health information and medical records. The rule also creates a standard for individual privacy rights to control and understand how their health information will be used. Within HHS, the Office for Civil Rights (OCR) has a responsibility for implementing and enforcing the Privacy Rule and may impose civil money penalties for those failing to comply with the Privacy Rule.

What is the HIPAA Enforcement Rule?


Within HHS, the Office for Civil Rights is responsible to ensure enforcement of the HIPAA Privacy and Security Rules including corrective action and civil money penalties. Anyone can file a complaint to the OCR.