HIPAA Privacy Rule

E698612

United States federal regulation health privacy regulation

The HIPAA Privacy Rule is a U.S. federal regulation that sets national standards for protecting individuals’ medical records and other personal health information held by covered entities and their business associates.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (2)

Label	Occurrences
HIPAA Privacy Rule canonical	4
Privacy Rule	1

Statements (57)

Predicate	Object
instanceOf	United States federal regulation ⓘ health privacy regulation ⓘ
administeredBy	Office for Civil Rights (HHS OCR) NERFINISHED ⓘ U.S. Department of Health and Human Services NERFINISHED ⓘ
amendedBy	HITECH Act Omnibus Rule of 2013 NERFINISHED ⓘ Health Information Technology for Economic and Clinical Health Act NERFINISHED ⓘ
appliesTo	business associates of covered entities ⓘ covered entities ⓘ
codifiedIn	45 CFR Part 160 ⓘ 45 CFR Part 164 Subparts A and E ⓘ
complianceDateForMostCoveredEntities	April 14, 2003 ⓘ
complianceDateForSmallHealthPlans	April 14, 2004 ⓘ
definesTerm	authorization ⓘ business associate ⓘ covered entity ⓘ disclosure ⓘ minimum necessary standard ⓘ protected health information ⓘ use ⓘ
effectiveDate	April 14, 2003 ⓘ
enforcedBy	HHS Office for Civil Rights NERFINISHED ⓘ
establishesStandard	de-identification of health information ⓘ minimum necessary use and disclosure of protected health information ⓘ
grantsRightTo	access to one’s own protected health information ⓘ receive a notice of privacy practices ⓘ receive an accounting of disclosures of protected health information ⓘ request amendment of protected health information ⓘ request confidential communications ⓘ request restrictions on certain uses and disclosures of protected health information ⓘ
jurisdiction	United States of America ⓘ surface form: United States
partOf	Health Insurance Portability and Accountability Act NERFINISHED ⓘ
permitsDisclosureFor	health care operations ⓘ health oversight activities ⓘ judicial and administrative proceedings ⓘ law enforcement purposes ⓘ payment ⓘ public health activities ⓘ research under specified conditions ⓘ treatment ⓘ workers’ compensation programs ⓘ
primaryPurpose	protect the privacy of individually identifiable health information ⓘ
relatedTo	HIPAA Breach Notification Rule NERFINISHED ⓘ HIPAA Security Rule NERFINISHED ⓘ
requires	designation of a privacy official ⓘ implementation of administrative safeguards for privacy ⓘ implementation of physical safeguards for privacy ⓘ implementation of technical safeguards for privacy ⓘ mitigation of known harmful effects of improper uses or disclosures ⓘ notice of privacy practices for protected health information ⓘ policies and procedures for handling complaints ⓘ sanctions for workforce members who violate privacy policies ⓘ training of workforce members on privacy policies and procedures ⓘ written authorization for most uses and disclosures of protected health information not otherwise permitted ⓘ
setsStandardFor	disclosure of protected health information ⓘ use of protected health information ⓘ
violationMayResultIn	civil monetary penalties ⓘ corrective action plans ⓘ

Referenced by (5)

Full triples — surface form annotated when it differs from this entity's canonical label.

HIPAA Breach Notification Rule → relatedTo → HIPAA Privacy Rule ⓘ

HIPAA Enforcement Rule → relatedTo → HIPAA Privacy Rule ⓘ

HITECH Act → strengthens → HIPAA Privacy Rule ⓘ

HIPAA Security Rule → relatedTo → HIPAA Privacy Rule ⓘ

Public Law 106-102 → containsProvision → HIPAA Privacy Rule ⓘ

this entity surface form: Privacy Rule