What is HIPAA?
The Health Insurance Portability and Accountability Act of 1996 (PL 104-191), also known as
HIPAA, is a law designed to improve the efficiency and effectiveness of the nation's health care
system. HIPAA is divided into two parts:
Title I: Health Care Access, Portability, and Renewability
Protects health insurance coverage when someone loses or changes their job
Addresses issues such as pre-existing conditions
Title II: Administrative Simplification
Includes provisions for the privacy and security of health information
Specifies electronic standards for the transmission of health information
Requires unique identifiers for providers
Summary
The rules of the HIPPA are related to privacy rules regarding the medical information and
the other important secrete information. The HIPPA rules require the appropriate information
safeguard to protect the privacy of the personal information of the health and it sets some limits
and conditions on the use or the disclosures that may be made without the authorization and
permission of the patients. But the HIPPA allows and gives the right to the patient to access and
examine his information and the report of his health record and request for the corrections and
modifications in the health record. So, as in this case, I am a patient and so I have a right to
access my medical information and health report. So in this situation, this is not a violation of
, HIPPA. But there may be other situation that going into the system I have accessed the health
record of the other people that is present in the system, then this will be the question of violation
of the HIPPA rules.
Who needs to comply with HIPAA?
The HIPAA regulations apply to covered entities and business associates, defined as
health plans, health care clearinghouses, and health care providers who conduct certain electronic
transactions.
Find out if you are a covered entity under HIPAA.
Definition of Business Associate
The 2013 Final Rule expands the definition of a business associate to generally include a
person who creates, receives, maintains, or transmits protected health information (PHI) on
behalf of a covered entity. This now includes:
Subcontractor—person (other than a business associate workforce member) to whom a business
associate delegates a function, activity, or services where the delegated function involves the
creation, receipt, maintenances, or transmission of PHI.
Health information organizations, e-prescribing gateways and other person that "provide
data transmission services with respect to PHI to a covered entity and that require access on a
routine basis to such PHI"
Persons who offer a personal health record to one or more individuals "on behalf of" a covered
entity.
The Health Insurance Portability and Accountability Act of 1996 (PL 104-191), also known as
HIPAA, is a law designed to improve the efficiency and effectiveness of the nation's health care
system. HIPAA is divided into two parts:
Title I: Health Care Access, Portability, and Renewability
Protects health insurance coverage when someone loses or changes their job
Addresses issues such as pre-existing conditions
Title II: Administrative Simplification
Includes provisions for the privacy and security of health information
Specifies electronic standards for the transmission of health information
Requires unique identifiers for providers
Summary
The rules of the HIPPA are related to privacy rules regarding the medical information and
the other important secrete information. The HIPPA rules require the appropriate information
safeguard to protect the privacy of the personal information of the health and it sets some limits
and conditions on the use or the disclosures that may be made without the authorization and
permission of the patients. But the HIPPA allows and gives the right to the patient to access and
examine his information and the report of his health record and request for the corrections and
modifications in the health record. So, as in this case, I am a patient and so I have a right to
access my medical information and health report. So in this situation, this is not a violation of
, HIPPA. But there may be other situation that going into the system I have accessed the health
record of the other people that is present in the system, then this will be the question of violation
of the HIPPA rules.
Who needs to comply with HIPAA?
The HIPAA regulations apply to covered entities and business associates, defined as
health plans, health care clearinghouses, and health care providers who conduct certain electronic
transactions.
Find out if you are a covered entity under HIPAA.
Definition of Business Associate
The 2013 Final Rule expands the definition of a business associate to generally include a
person who creates, receives, maintains, or transmits protected health information (PHI) on
behalf of a covered entity. This now includes:
Subcontractor—person (other than a business associate workforce member) to whom a business
associate delegates a function, activity, or services where the delegated function involves the
creation, receipt, maintenances, or transmission of PHI.
Health information organizations, e-prescribing gateways and other person that "provide
data transmission services with respect to PHI to a covered entity and that require access on a
routine basis to such PHI"
Persons who offer a personal health record to one or more individuals "on behalf of" a covered
entity.
