HIPAA - Privacy and Security Standards

AHA Response to the Dececember 2018 HIPAA RFI (December 12, 2019)

AHA/AHIMA Webinar: Engaging Patients Through Access to Their Medical Records (November 15, 2016)

Presentation slides (PDF)

AHA Statement to NCVHS regarding HIPAA’s minimum necessary standard (June 16, 2016)

AHA comment letter to CMS extending the Stark protections for Health IT donations. (May 13, 2013)

AHA comment letter to OIG extending the antikickback protections for Health IT donations. (May 13, 2013)

AHA Comments: HIPAA Privacy Rule Accounting of Disclosures (RIN 0991-AB62); Notice of Proposed Rulemaking, 76 Fed. Reg. 31426 (August 1, 2011)

Legal Advisory: Accounting of Disclosures Under HITECH: Proposed Rule (June 15, 2011) Members Only

AHA Comments: Modifications to the HIPAA Privacy, Security, and Enforcement Rues under the Health Information Technology for Economic and Clinical Health Act; Proposed Rule, 75 Fed. Reg. 40868 (September 10, 2010)

Legal Advisory: HITECH's Modifications to HIPAA Requirements: The Proposed Rule (August 11, 2010) Members Only

Regulatory Advisory: HIPAA Enforcement Updated Under HITECH: The Interim Final Rule (November 10, 2009) Members Only

Regulatory Advisory: HHS' Breach Notification Obligations: The Interim Final Rule (September 9, 2009) Members Only

Contracting for Electronic Health Records: Guidelines for Hospitals(2011)

Guidelines for Releasing Patient Information to Law Enforcement (July 2005)

Updated Guidelines for releasing information on the condition of patients (February 2003) Members Only

AHA's Health Information Technology Resources

HHS' Health Information Privacy website

Privacy and Security Standards Resources Archive