HIPAA Security Rule

E184831

The HIPAA Security Rule is a U.S. federal regulation that sets national standards for protecting the confidentiality, integrity, and availability of electronic protected health information through administrative, physical, and technical safeguards.

All labels observed (4)

How this entity was disambiguated

Statements (50)

Predicate Object
instanceOf United States federal regulation
health information privacy and security regulation
abbreviationOf HIPAA Security Rule self-linksurface differs
surface form: Health Insurance Portability and Accountability Act Security Rule
administeredBy United States Department of Health and Human Services
surface form: U.S. Department of Health and Human Services
alsoKnownAs HIPAA Security Rule
surface form: Security Standards for the Protection of Electronic Protected Health Information
appliesTo HIPAA business associates
HIPAA covered entities
certain health care providers
health care clearinghouses
health plans
codifiedAt 45 CFR Part 160
45 CFR Part 164 Subparts A and C
complianceDateForMostCoveredEntities 2005-04-20
complianceDateForSmallHealthPlans 2006-04-20
distinguishes addressable implementation specifications
required implementation specifications
doesNotDirectlyCover oral protected health information
paper protected health information
effectiveDate 2005-04-20
enforcedBy Office for Civil Rights
surface form: U.S. Department of Health and Human Services Office for Civil Rights
focusesOn electronic protected health information
jurisdiction United States of America
surface form: United States
legalBasis Health Insurance Portability and Accountability Act
surface form: Health Insurance Portability and Accountability Act of 1996
partOf Health Insurance Portability and Accountability Act
purpose ensure availability of electronic protected health information
protect confidentiality of electronic protected health information
protect integrity of electronic protected health information
regulates electronic protected health information
relatedTo HIPAA Privacy Rule
HITECH Act
requires access control for information systems containing electronic protected health information
administrative safeguards for electronic protected health information
audit controls for systems containing electronic protected health information
contingency planning for electronic protected health information
device and media controls
documentation of security measures
facility access controls
information access management
integrity controls for electronic protected health information
organizational requirements for electronic protected health information
person or entity authentication
physical safeguards for electronic protected health information
policies and procedures for electronic protected health information
risk analysis of potential risks and vulnerabilities to electronic protected health information
risk management to reduce risks to a reasonable and appropriate level
security awareness and training
security incident procedures
technical safeguards for electronic protected health information
transmission security for electronic protected health information
workforce security measures

How these facts were elicited

Referenced by (7)

Full triples — surface form annotated when it differs from this entity's canonical label.

Office for Civil Rights enforces HIPAA Security Rule
subject surface form: Office for Civil Rights (HHS)
this entity surface form: Health Insurance Portability and Accountability Act security rule
HIPAA Breach Notification Rule relatedTo HIPAA Security Rule
HIPAA Enforcement Rule relatedTo HIPAA Security Rule
HITECH Act strengthens HIPAA Security Rule
HIPAA Security Rule abbreviationOf HIPAA Security Rule self-linksurface differs
this entity surface form: Health Insurance Portability and Accountability Act Security Rule
HIPAA Security Rule alsoKnownAs HIPAA Security Rule
this entity surface form: Security Standards for the Protection of Electronic Protected Health Information