What is HIPAA
Home

HIPAA Rules

While there are many provisions in the Health Insurance Portability and Accountability Act, the overriding aim of the HIPAA rules and regulations is to safeguard the health data of patients and protect their rights. As technology evolved, provisions were added to update it.

Privacy Rules

The Privacy Rule in December 2000 was established by the U.S. Department of Health and Human Services (HHS). The law safeguards an individual’s health record. The provisions also give the individual control over who can view and obtain the data. This stipulation applies to oral, written and electronic health related information.

The Security Rule

The Security Rule was set by the HHS in February 2003. Its aim is to protect the confidentiality of the health information that is stored in computers and networks. Organizations that secure, exchange and store heath related data have to implement measures to keep these safe and private.

HIPAA Rules on Covered and Non Covered Entities

The covered entities include health insurance carriers, company health plans and HMOs. Doctors, clinics, hospitals, pharmacies and nursing homes are also subject to HIPAA regulations. Clearinghouses that keep health information are also bound by the law.

Non-covered entities include life insurers and state agencies like Child Protective Services. Law enforcement agencies and workers compensation carries are also not included.

About the Protected Data

Under HIPAA law, the protected data and your discussions with doctors about your health condition are safeguarded. Billing and health insurance information is likewise protected. The billing fees are also protected.

The entities covered by HIPAA are required to have written agreements with their contractors. There are also restrictions in the manner in which the data may be viewed and by whom. Covered entities are also mandated to train their personnel on how to safeguard the data.

Rights of the Patient

As a patient you have the right to ask for a copy of your health records. If the information is shared, you have the right to ask why. A patient also has the right to ask the covered entity not to use their health data for marketing. If you want to share the info with another party, however, it is possible to do so. You just have to make the request.

If you feel the organization is not following the HIPAA rules, you have the right to file a complaint. If your complaints are not heeded, you can go straight to the government and let them know the situation.

Leave a Comment

Please note: Comment moderation is enabled and may delay your comment. There is no need to resubmit your comment.

Main menu

Additional Resources

 
© 2012 What is HIPAA Privacy Policy