!!! Overview
[{$pagename}] is a [Privacy Law] that establishes national standards to protect individuals’ [medical records|Personal Health Record] and other [Protected Health Information] ([PHI]) and applies to [HIPAA Covered Entity] that conduct certain [Health Care|HealthCare] transactions electronically.  

[{$pagename}] requires appropriate safeguards to protect the [privacy] of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient [authorization]. The Rule also gives [patients] rights over their health information, including rights to examine and obtain a copy of their health records, and to request corrections.

[Health information] means any information, including genetic information, whether oral or recorded in any form or medium, that:
* (1) Is created or received by a 
** [Health Care Provider], 
** health plan, 
** public health authority, 
** [employer], 
** life insurer, 
** school or university, 
** health care clearinghouse
* (2) Relates to the:
** past, present, or future physical or mental health or condition of an individual; 
** provision of health care to an individual;  
** the past, present, or future payment for the provision of health care to an individual. 

!! [{$pagename}] [Auditing]
[{$pagename}] are [Auditing] and [Penalty] are handled by [United States Department of Health and Human Services] ([HHS])

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [The HIPAA Privacy Rule|https://www.hhs.gov/hipaa/for-professionals/privacy/index.html|target='_blank'] - based on information obtained 2017-07-27-