Health Insurance Portability and Accountability Act
HIPAAUS federal law protecting health information. Privacy Rule governs use and disclosure of protected health information (PHI) by covered entities and business associates.
Jurisdiction
United States
Jurisdiction Type
federal
Country
United States
Effective Date
8/21/1996
Enforcing Authority
Department of Health and Human Services (HHS) Office for Civil Rights
Maximum Fine
Up to $1.5M per violation category per year; criminal penalties up to $250K and 10 years
Fines Under This Regulation
0
Total Fine Amount (USD)
--
Privacy Topics
health_dataphibreach_notificationbusiness_associatesminimum_necessary
Key Articles
| Article | Description |
|---|---|
| Privacy Rule | Use and disclosure of PHI |
| Security Rule | Administrative, physical, technical safeguards |
| Enforcement Rule | Compliance and penalties |
| Breach Notification Rule | Notification requirements for breaches |