Overview#HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to HIPAA Covered Entity that conduct certain healthcare transactions electronically.
HIPAA Privacy Rule requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. The Rule also gives patients rights over their health information, including rights to examine and obtain a copy of their health records, and to request corrections.
Health information means any information, including genetic information, whether oral or recorded in any form or medium, that:
- (1) Is created or received by a
- Health Care Provider,
- health plan,
- public health authority,
- life insurer,
- school or university,
- health care clearinghouse
- (2) Relates to the:
- past, present, or future physical or mental health or condition of an individual;
- provision of health care to an individual;
- the past, present, or future payment for the provision of health care to an individual.