HIPAA

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) established new standards for the confidentiality, security, and transmissibility of health care information.

There are three types of standards created by HIPAA: privacy, security and administrative simplification (e.g., transaction standards).

Taken together, these regulations have a major impact on the day-to-day functioning of the nation's hospitals and affect virtually every department of every entity that provides or pays for health care.

This web page provides resources for hospitals and health systems on HIPAA compliance, security and privacy standards, transaction standards and administrative simplification.

HIPAA - Privacy and Security Standards

AHA/AHIMA Webinar: Engaging Patients Through Access to Their Medical Records (November 15, 2016) Presentation slides (PDF) AHA Statement to NCVHS regarding HIPAA’s minimum necessary standard (June 16, 2016) AHA comment letter to CMS extending the Stark protections for Health IT ...

Related Resources

Letter
Public
AHA letter to the House expressing support of H.R. 6082, the Overdose Prevention and Patient Safety (OPPS) Act, which would align 42 CFR Part 2 with the Health…
Letter
Public
AHA letter to Representatives Greg Walden, and Frank Pallone expressing support for The Limited Repeal of the IMD Exclusion for Adult Medicaid Beneficiaries…
Letter
Public
AHA reiterates support for legislation to align 42 CFR Part 2 with HIPAA.
Standards/Guidelines
Introduction Hospitals and health systems are responsible for protecting the privacy and confidentiality of their patients and patient in
Letter
AHA comments to the Office of the National Coordinator for Health Information on its draft Trusted Exchange Framework and Common Agreement as well as ONC’s…
Member
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) mandated regulations that govern privacy standards for health care information. HIPAA…