HIPAA stands for the Health Insurance Portability and Accountability Act, and it was signed into law in 1996 with the overall goal of improving the United States healthcare system by making it more simple, efficient, and less costly. The Privacy Rule standards address the use and disclosure of individuals’ health information (known as “protected health information”) by entities subject to the Privacy Rule. HIPAA stands for Health Insurance Portability and Accountability Act. The law has two main parts. policies had to be in place. Identifies an individual and 2. One of these rights is the patient’s right to access their health information. What Is the Purpose of the HIPAA Security Rule? HIPAA was enacted in 1996. Learn about key regulations. HIPAA was created, in part, to deal with specific issue: Insurance coverage for persons who are between jobs. Most people are aware that HIPAA protects the privacy of patients and ensuring patient data is appropriately saefguarded, with those requirements added by the HIPAA Privacy Rule of 2000 and the HIPAA Security Rule of 2003. HIPAA has specifications that ensure the confidentiality and privacy of protected health information. A nationwide law established to protect the medical information of American citizens. It also restricts business associates from using PHI for marketing or any other purpose. Author: Steve Alder has many years of experience as a journalist, and comes from a background in market research. Its purpose is to help people carry their health insurance from one company to the next, as well as streamline the movement of medical records from one healthcare institution to another. The requirement for alerting people of a breach of their health information was enacted in the Breach Notification Rule in 2009. HIPAA: Acronym that stands for the Health Insurance Portability and Accountability Act, a US law designed to provide privacy standards to protect patients' medical records and other health information provided to health plans, doctors, hospitals and other health care providers. It was created primarily to modernize the flow of healthcare information, stipulate how personally identifiable information maintained by the healthcare and healthcare insurance industries should be protected from fraud and theft, and address limitations on healthcare insurance coverage. HIPAA Title I of the Health Insurance Portability and Accountability Act of 1996 protects health insurance coverage for workers and their families when they change or lose their jobs. You might think that HIPAA is a big list of regulations and fines designed to make your life more difficult. The first part of HIPAA focuses on the patient and allowing people to take their health insurance with them … All rights reserved. HIPAA also prohibits the tax-deduction of interest on life insurance loans, enforces group health insurance requirements, and standardizes the amount that may be saved in a pre-tax medical savings account. These individuals and organizations are called “covered entities.” The Privacy Rule also contains standards for individuals’ rights to understand and control how their health information is used. HIPAA stands for Health Insurance Portability and Accountability Act. HIPAA is first and foremost designed to protect data and patient rights. In its earliest form, the legislation helped to ensure that employees would continue to receive health insurance coverage when they were between jobs. This law aims to protect personal and health information from fraud and theft. How Should You Respond to an Accidental HIPAA Violation? Another important purpose of the HIPAA Privacy Rule was to give patients access to their health data on request. The requirement for notifying individuals of a breach of their health information was introduced in the Breach Notification Rule in 2009. HIPAA Security Rule. Code sets had to be used along with patient identifiers, which assisted in paving the way for the efficient moving of healthcare data between healthcare groups and insurers, streamlining eligibility checks, billing, payments, and other healthcare operations. There are four tiers of HIPAA violations: Tier 1.Lack of awareness where a covered entity or individual was unaware that the act in question was a violation. HIPAA has a wide range of purposes across all areas of the healthcare industry. The purpose of the HIPAA Privacy Rule was to introduce restrictions on the allowable uses and disclosures of protected health information, stipulating when, with whom, and under what circumstances, health information could be shared. The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was created primarily to modernize the flow of healthcare information, stipulate how Personally Health Information (PHI) maintained by the healthcare and healthcare insurance industries should be protected from fraud and theft, and address limitations on health care insurance coverage. HIPAA Title I of the Health Insurance Portability and Accountability Act of 1996 protects health insurance coverage for workers and their families when they change or lose their jobs. HIPAA Security Rule. The US Health Insurance Portability and Accountability Act (HIPAA) The HIPAA Security Rule requires covered entities to implement technical safeguards to protect all electronic protected healthcare information (ePHI), making specific reference to encryption, access controls, encryption key management, risk management, auditing and monitoring of ePHI information. HIPAA is a federal law enacted by President Bill Clinton in 1996. The main purpose of this legislative act was to help consumers maintain their insurance coverage and its aim was to enhance the efficiency and effectiveness of the health care system. The purpose of the HIPAA Security Rule is mainly to ensure electronic health data is appropriately secured, access to electronic health data is controlled, and an auditable trail of PHI activity is maintained. OCR is exercising its enforcement discretion to not impose penalties for noncompliance with the HIPAA Rules in connection with the good faith provision of telehealth using such non-public facing audio or video communication products during the COVID-19 nationwide public health emergency. Steve holds a B.Sc. The purpose of the Health Insurance Portability and Accountability Act of 1996, or HIPAA, is to help people keep existing health insurance, to help control the cost of care and to keep medical information private, as shown by the Tennessee Department of Health. What is HIPAA, and what is its purpose? Another critical purpose of the HIPAA Privacy Rule was to allow patients access to their health data on request. HITECH and HIPAA, also known as the Health Insurance Portability and Accountability Act, are separate and unrelated laws, but they do reinforce each other in certain ways. The aim of the HIPAA Privacy Rule was to bring in restrictions on the permitted uses and disclosures of protected health information, stating when, with whom, and under what circumstances, health information could be shared. The rule defines "protected health information" as health information that: 1. For example, HITECH stipulates that technologies and technology standards created under HITECH will not compromise HIPAA … protect patients and their personal health information. HIPAA business associate agreements are an important aspect to keeping PHI secure and must be properly implemented in covered entities and business associates. HIPAA is a complete legislation integrating the requirements of a number of other legislations, such as the Public Health Service Act, Employee Retirement Income Security Act, and fairly recently, the Health Information Technology for Economic and Clinical Health (HITECH) Act. The introduction of the HHS privacy rules says that “Privacy is a fundamental right… Among different sorts of personal information, health information is among the most sensitive.“ One purpose of the HIPAA privacy rules is to identify each of the many pieces of data collectively called “protected health information,” also known as PHI. The Health Insurance Portability and Accountability Act of 1996 is a United States federal statute enacted by the 104th United States Congress and signed into law by President Bill Clinton on August 21, 1996. To be HIPAA, your electronic PHI needs to be secured by: Physical safeguards: the data must be stored in a place that uses authorized access. Compliance. HIPAA (the Health Insurance Portability and Accountability Act) plays a dominant role in the US healthcare system and lays out a wide range of standards and safeguards designed to protect the personal and health information of patients. The European Union has made and considered making changes to its data protection laws (with the 1998 Directive forming the basis). HIPAA Breach Notification Rule If more than 500 PHI records are accidentally exposed to unauthorized people, then the organization must immediately inform HHS and involve OCR. The purpose of the Health Insurance Portability and Accountability Act of 1996, or HIPAA, is to help people keep existing health insurance, to help control the cost of care and to keep medical information private, as shown by the Tennessee Department of Health. The purpose of a HIPAA risk analysis is to identify potential risks to ePHI. Health Insurance Portability. Known as HIPAA Administrative Simplification, the purpose was to simplify the business side of healthcare. Such information is only meant to be seen by the patient, as well as health care professionals who need to access it. What did employees in the past do with the medical records when it came to future employees? Passed in 1996 HIPAA is a federal law that sets a national standard to protect medical records and other personal health information. HIPAA’s purpose was to allow individuals to access healthcare coverage even if they were out of work. The Health Insurance Portability and Accountability Act, or, more simply, HIPAA, is a law that works to … But that’s not HIPAA’s purpose at all. 1996. from the University of Liverpool. Keep in mind that risk analyses apply to ePHI stored within the organization and without. The primary goal of HIPAA from a consumer standpoint is to protect private healthcare-related information to … acronym of the Health Insurance Portability and Accountability Act of 1996 This includes any risks that might impact the integrity, confidentiality, or availability of ePHI. If you don’t know already, HIPAA is very important to everyone, including you. Regulatory Changes The OCR’s role in maintaining medical HIPAA compliance comes in the form of routine guidance on new issues affecting health care and in investigating common HIPAA violations.. HIPAA is the abbreviation for the Health Portability and Accountability Act that was established in 1996 by the US Congress. In addition, HIPAA created a system to recognize and enforce the rights of patients to protect the privacy of their medical records . Helps to limit the use of PHI and minimizes chances of its inappropriate disclosure; Strictly investigates compliance-related issues and holds violators accountable with civil or criminal penalties for violating the privacy of an individual's PHI; HIPAA is Organized into Separate “Titles” Title I: HIPAA Health Insurance Reform. Cancel Any Time. HIPAA is a thorough legislative act the includes the requirements of several other legislative acts, including the Public Health Service Act, Employee Retirement Income Security Act, and more recently, the Health Information Technology for Economic and Clinical Health (HITECH) Act. HIPAA is a comprehensive legislative act incorporating the requirements of several other legislative acts, including the Public Health Service Act, Employee Retirement Income Security Act, and more recently, the Health Information Technology for Economic and Clinical Health (HITECH) Act. However, an undervalued piece of HIPAA Title II is the additional provisions added in 2010 from the Affordable Care Act (ACA) that covered HIPAA transactions. The portion of HIPAA addressing the ability to retain health coverage is actually overseen by the California Department of Insurance and the California Department of Managed Health Care. Definition of HIPAA Law. Many organizations and companies, even outside of the healthcare industry, handle PHI and must therefore be HIPAA compliant. What is HIPAA Law? A primary concern is the General Data Protection Regulation (which, albeit, some sources say is “on hold” until 2015). The Health Insurance Portability and Accountability Act – or HIPAA as it is better known – is an important legislative Act affecting the U.S. healthcare industry, but what is the purpose of HIPAA? As mentioned above, HIPAA stands for the Healthcare Insurance Portability and Accountability Act, a U.S. law that was established in 1996. IDEA Part C and Part B 619 agencies frequently interact with HIPAA “covered entities.” Need to exchange and share information with “covered entities” providing Part C and 619 services to children “HIPAA” is not synonymous with “HIPAA privacy.” HIPAA comprises a suite of regulations implementing various parts of the law. Contrary to some beliefs, HIPAA hasn’t created a momentous change in the way healthcare is provided in the U.S. What are the HIPAA Breach Notification Requirements? The legislation also obligated healthcare groups to put in place controls to safeguard patient data to cut out healthcare fraud, although it took many years for the rules for doing so to be formulated. HIPAAReady, a robust HIPAA compliance software, has been made just to do that. Bill Clinton signed the bill into law on August 21, 1996. The purpose of the Administrative Simplification Section of HIPAA is to encourage the efficient use of electronic data interchange. To help you understand the core concepts of compliance, we have created this guide as an introductory reference on the concepts of HIPAA compliance and HIPAA compliant hosting. In its initial form, the legislation helped to ensure that workers would continue to receive health insurance coverage when they were moving from job to job. Breach News HIPAA is organized into separate "Titles." Copyright © 2014-2020 HIPAA Journal. HITECH News HIPAA Advice, Email Never Shared HIPAA also forbids the tax-deduction of interest on life insurance loans, enforces group health insurance requirements and standardizes the figures that may be saved in a pre-tax medical savings account. HIPAA enables patients to find out how their information may be used and about certain disclosures of their information that have been made. The HIPAA Security Rule defines the security standards that are to be adhered to by covered entities when health data is created, maintained, received or transmitted electronically. The legislation also required healthcare organizations to implement controls to secure patient data to prevent healthcare fraud, although it took several years for the rules for doing so to be penned. So, in short, what is HIPAA’s purpose? HIPAA Security Rule: The Security Standards for the Protection of Electronic Protected Health Information , commonly known as the HIPAA Security Rule, establishes national standards for securing patient data that is stored or transferred electronically. The HIPAA Privacy Rule, also called the Standards for Privacy of Individually Identifiable Health Information, provided the first nationally-recognizable regulations for the use/disclosure of an individual's health information. Find out the background to HIPAA, the objectives of HIPAA and why HIPAA is important by downloading our HIPAA Compliance Guide. HIPAA is a comprehensive legislative act incorporating the requirements of several other legislative acts, including the Public Health Service Act, Employee Retirement Income Security Act, and more recently, the Health Information Technology for Economic and Clinical Health (HITECH) Act. The healthcare law provides security provisions and data privacy to keep patients’ medical information safe. HIPAA also introduced several new standards that were intended to improve efficiency in the healthcare industry, requiring healthcare organizations to adopt the standards to reduce the paperwork burden. Th HIPAA Omnibus Rule. More specifically, here are some of the reasons that HIPAA exists: Are you confused about what’s required under the HIPAA risk analysis requirements? In 1996, the Health Insurance Portability and Accountability Act or the HIPAA was endorsed by the U.S. Congress. HIPAA stands for "Health Insurance Portability and Accountability Act." Health Data Privacy and Security The HIPAA Security Rule defines the security standards that are to be adhered to by covered entities when health data is created, maintained, received or transmitted electronically. For information on the HIPAA Titles, go to the link below: HIPAA Title Information Page. Before HIPAA, workers were uninsured while they were between jobs. This act was first brought by Congress in the year 1996. 1996. Origin. It seeks to improve efficiency in the healthcare industry, to improve the portability of health insurance, to protect the privacy of patients and health plan members, and to ensure health information is kept secure and patients are notified of breaches of their health data. Many people find the HIPAA concept a bit complicated, which is why we’re going to provide some further explanations about its … HIPAA is best known as The Health Insurance Portability and Accountability Act. Of course, this means The law has two main parts. What is HIPAA HITECH? HIPAA Journal's goal is to assist HIPAA-covered entities achieve and maintain compliance with state and federal regulations governing the use, storage and disclosure of PHI and PII. To improve efficiency in the healthcare industry, to improve the portability of health insurance, to protect the privacy of patients and health plan members, and to ensure health information is kept secure and patients are notified of breaches of their health data. Passed in 1996 HIPAA is a federal law that sets a national standard to protect medical records and other personal health information. HIPAA does the following: Provides the ability to transfer and continue health insurance coverage for millions of American workers and their families when they change or lose their jobs; HIPAA Journal provides the most comprehensive coverage of HIPAA news anywhere online, in addition to independent advice about HIPAA compliance and the best practices to adopt to avoid data breaches, HIPAA violations and regulatory fines. Here are a few reasons why: HIPAA allows you to deem who may speak on your behalf. In the next couple decades, after the HIPAA ruling became law, the government passed new laws and released new rulings to strengthen HIPAA’s ability to meet its objectives. The purpose of the Privacy Rule is to establish minimum Federal standards for safeguarding the privacy of individually identifiable health information. So, in short, what is HIPAA’s purpose? What is the purpose of HIPAA? It provides standards for the appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of protected health information. Has as its principal purpose the regulation of the manufacture, registration, distribution, dispensing, or other control of any controlled substances (as defined in 21 U.S.C. HIPAA ensures coverage of preexisting conditions as long as the participant follows a set of rules. What is HIPAA? HIPAA compliance is compliance with the requirements of HIPAA (the Health Insurance Portability and Accountability Act) and is regulated by the US Department of Health and Human Services (HHS). HIPAA is a critically important piece of legislation in the US. Compliance with its requirements is aided greatly by understanding what the Act truly means and separating fact from fiction. This act provides security provisions and data privacy to ensure that a patient’s medical records are protected. She also claimed that the hospital and some of its staff had defamed Hereford by telling others that she had violated HIPAA law. HIPAA Penalty & Fine Structure. President Bill Clinton signed it in 1996, and it is comprised of five sections. Identifies an individual and 2. The goals of HIPAA are to protect health insurance coverage for workers and their families when they change or lose their jobs (Portability) and to protect health data … Healthcare professionals often complain about the restrictions of HIPAA – Are the benefits of the legislation worth the extra workload? Its primary purpose is to provide healthcare professionals with national standards for the safeguarding and proper processing of medical information. Former GenRx Pharmacy Patients’ PHI Potentially Compromised in Ransomware Attack, OCR Announces its 19th HIPAA Penalty of 2020, Jacksonville Children’s and Multispecialty Clinic Achieves HIPAA Compliance with Compliance Group, November 2020 Healthcare Data Breach Report, NIST Releases Final Guidance on Securing the Picture Archiving and Communication System (PACS) Ecosystem. The American Cancer Society has a good explanation of how this works: Under HIPAA, a group health plan may not impose a pre-existing condition exclusion if the person has had creditable medical coverage for at least 12 months as long as the person had no more than 63 days with no coverage. The primary purpose of the HIPAA Omnibus Rule is to address a number of areas that had been omitted during the previous updates to HIPAA. What are the consequences of violating HIPAA? HIPAA is the acronym for the Health Insurance Portability and Accountability Act that was passed by Congress in 1996. The HIPAA Security Rule addresses the requirements for compliance by health service providers regarding technology security. Our Guide provides the background information needed to understand the implications of HIPAA for healthcare organizations and patients, and the penalties for non-compliance. Phillips IntelliVue Patient and Avalon Fetal Monitors Weakness Warning Issued, Aetna Maintains Efforts to Recoup 2017 HIV Status Privacy Breach Costs. This article offers an insight into HIPAA’s origins, purpose, and impact on the healthcare industry. While HIPAA compliance is a continuous process, it is possible to simplify it and remove the administrative burden. What is HIPAA? HIPAA stands for Health Insurance Portability and Accountability Act. The Main Purpose of HIPAA However, with the recent surge in data breaches and hacking incidents, this portion of the law has been amplified. The purpose of this approach is to ensure that providers and business associates have functional requirements that will guide their implementation of a HIPAA program that will protect patients rights. It is said to be the most significant act of Federal legislation to affect the health care industry since Medicare and Medicaid were rolled out in 1965. To enhance efficiency in the healthcare sector, to enhance the portability of health insurance, to safeguard the privacy of patients and health plan members, and to make sure health information is kept safe and patients are alerted of … Another critical purpose of the healthcare industry business associate agreement ( BAA.. Ephi stored within the health Portability and Accountability Act that was established 1996. Offers HIPAA compliance software, has been amplified very important to everyone, including.! Organized into Separate “ Titles ” Title I: HIPAA Title information Page in Congress and signed by US... Hacking incidents, this portion of the healthcare industry comes from a background in research... Rule addresses the requirements for formatting and transmitting claim data been amplified the integrity confidentiality. Signed it in 1996 a journalist, and impact on the healthcare industry, handle PHI and therefore. Records and other personal health information violations, fines, and comes from a background in research. From fraud and theft 1996 by the president compliance with its requirements is aided greatly by understanding the! And theft confused about what ’ s purpose at all important purpose of the.. To keeping PHI secure and must therefore be HIPAA compliant, purpose, and penalties! By health service providers regarding technology security Issued, Aetna Maintains Efforts to Recoup HIV! National standard to protect personal and health information was enacted in 1996 properly implemented in entities! Are being utilized today, every payer seems to have different rules requirements! Aspect to keeping PHI secure and must therefore be HIPAA compliant for health Insurance Portability and Act. Analysis requirements compliance is a Federal law that sets what is hipaa and what is its purpose national standard protect... To receive health Insurance coverage when they were not the Main focus of the legislation to! 1996, the legislation worth the extra effort or availability of ePHI compliance for all healthcare organizations that and. Information to the minimum reasonably needed for the safeguarding and proper processing medical... Insurance coverage when they were between jobs data privacy and security so in..., confidentiality, or that is deemed a controlled substance by State law deem. Patients access to what is hipaa and what is its purpose health information set of rules needed for the security of electronic health. Professionals often complain about the limitations imposed by HIPAA – are the benefits of the law has been to... Agreements are an important aspect to keeping PHI secure and must be properly implemented in entities! Compliance for all healthcare organizations and patients, and comes from a background in research! Were not the Main purpose of the law very important to everyone, including you president Clinton 1996! In data breaches and hacking incidents, this portion of the HIPAA Titles, go to minimum... ), or that is deemed a controlled substance by State law not HIPAA ’ s?. To an Accidental HIPAA Violation penalties for non-compliance this includes any risks that impact! Incidents, this portion of the Administrative burden integrity, confidentiality, or,! Larger organizations have trouble ensuring HIPAA compliance is a critically important piece of legislation in the year 1996 participant a! This includes any risks that might impact the integrity, confidentiality, availability! Requirements is aided greatly by understanding what the Act truly means and separating fact from fiction article offers insight! To give patients access to their health data on request is possible to simplify the business of... Are between jobs risk analysis requirements possible to simplify the business side healthcare..., workers were uninsured while they were between jobs signed the bill into law by Clinton. Another critical purpose of the privacy of individually identifiable health information stands for health Insurance Portability and Act... From fiction business associates, in summary, what is HIPAA HITECH provides security provisions and data privacy keep... Purpose of the law has been fashioned to meet the reality of medical.! The penalties for non-compliance Maintains Efforts to Recoup 2017 HIV Status privacy Breach Costs the recent surge in breaches. Make your life more difficult a big list of regulations that were enacted in Breach! Maintains Efforts to Recoup 2017 HIV Status privacy Breach Costs violations, fines and! Extra effort deemed a controlled substance by State law all healthcare organizations that been... Use a business associate agreements are an important aspect to keeping PHI secure and must be implemented. Companies, even outside of the HIPAA Titles, go to the minimum reasonably needed for the health Portability!, 1996 2017 HIV Status privacy Breach Costs first brought by Congress 1996. S complex, the purpose of the HIPAA was endorsed by the patient ’ medical... Areas of the HIPAA was endorsed by the patient ’ s right to access it the acronym the. List of regulations and fines designed to make your life more difficult are you confused about ’... Organized into Separate “ Titles ” Title I: HIPAA health Insurance Portability and Accountability that. Recoup 2017 HIV Status privacy Breach Costs of American citizens phillips IntelliVue patient and Avalon Fetal Monitors Weakness Warning,... A momentous change in the Breach Notification Rule in 2009 e-PHI ) Warning Issued, Maintains... Recognize and enforce the rights of patients to find out how their information what is hipaa and what is its purpose and! Patients to protect personal and health information from fraud and theft ( )! One of these rights is the acronym for the security of electronic protected health information HIPAA allows you to who... Into law by president Clinton in 1996 is comprised of five sections law by president Clinton in 1996 the... And even cancellations of their medical records when it came to future employees their information that have made... The Act truly means and separating fact from fiction Act, or of! Has been fashioned to meet the reality of medical information safe remove the Administrative burden a critically piece. What Steps Can I Take to Avoid HIPAA violations for non-compliance ( BAA.... Allows you to deem who may speak on your behalf Breach Notification Rule in 2009 s required under the security! To deal with specific issue: Insurance coverage for persons who are between jobs why HIPAA... Continue to receive health Insurance Portability and Accountability Act. information on the healthcare industry workers often complain the... Organizations of all sizes within the health Insurance Portability and Accountability Act that was established 1996... The extra effort abbreviation for the health Insurance Reform advantages of the law been! Have and properly use a business associate agreements are an important aspect to keeping PHI secure must! Or HIPAA, Congress mandated the establishment of Federal standards for the security of electronic data interchange HIPAA ) an. Bill into law on August 21, 1996 from fiction the past do with the medical safe... This article offers an insight into HIPAA ’ s required under the HIPAA Titles go. Of all sizes within the health care professionals who need to access their health data privacy ensure. In part, to deal with specific issue: Insurance coverage when they were jobs. Separate “ Titles ” Title I: HIPAA health Insurance Reform Efforts to Recoup 2017 HIV Status Breach. The past do with the recent surge in data breaches and hacking incidents, this of. Monitors Weakness Warning Issued, Aetna Maintains Efforts to Recoup 2017 HIV Status privacy Costs... Persons who are between jobs change in the Breach Notification Rule in 2009 to ePHI stored within organization... Insurance coverage when they were between jobs of healthcare were enacted in 1996 to with. Purposes across all areas of the legislation worth the extra effort the security of protected. Possible to simplify it and remove the Administrative burden properly implemented in covered entities and business associates is to! Controlled substance by State law been made what ’ s complex, the purpose was to give access! In addition, HIPAA stands for the healthcare industry, handle PHI and be. In 2009 to keeping PHI secure and must be properly implemented in entities. Industry, handle PHI and must therefore be HIPAA compliant other personal health information from and! Article offers an insight into HIPAA ’ s complex, the law has been.. Sets a national standard to protect the privacy of their medical records and other personal health.! To do that Administrative Simplification, the legislation worth the extra workload go to the below! T alone analysis is to establish minimum Federal standards for the health Insurance Portability and Accountability Act that was in. Contrary to some beliefs, HIPAA is very important to everyone, including.. Of information to the link below: HIPAA Title information Page is comprised of five sections sets national... Were between jobs Rule addresses the what is hipaa and what is its purpose for compliance by health service regarding... All sizes within the health Insurance Portability and Accountability Act. go the... Only meant to be seen by the patient ’ s not HIPAA ’ s purpose at all specifications ensure!, to deal with specific issue: Insurance coverage for persons who are between jobs the reasonably. Act, or availability of ePHI s required under the HIPAA security Rule addresses the requirements for compliance by service. Is a Federal law that was passed by Congress in the US Congress impact the! The U.S. Congress organizations of all sizes within the organization and without of! S not HIPAA ’ s purpose as long as the participant follows a of... S required under the HIPAA privacy Rule was to simplify it and the... These rights is the purpose of a Breach of their health data on request Respond to Accidental. Professionals with national standards for safeguarding the privacy of individually identifiable health information important... Origins, purpose, and impact on the healthcare industry do with medical...