us-federal · 1996

Health Insurance Portability and Accountability Act

HIPAA is the primary US cybersecurity and privacy law for the healthcare industry. The Security Rule (45 CFR Part 164 Subpart C) requires covered entities and business associates to implement administrative, physical, and technical safeguards to protect electronic protected health information (ePHI). HHS OCR enforces HIPAA and has assessed over $140 million in penalties since 2003.

Resumen editorial. Para el texto oficial, consulta la fuente oficial.

DecipherU no ofrece asesoría jurídica. Consulta abogado en tu jurisdicción para decisiones de cumplimiento.