Who must comply with the HIPAA Privacy Rule?
Quote from Admin on September 24, 2024, 4:03 pmEntities required to comply with the HIPAA Privacy Rule include health plans, health care clearinghouses, and health care providers that conduct certain transactions electronically—collectively known as covered entities—as well as their business associates. Business associates are individuals or entities that perform certain functions or activities that involve the use or disclosure of protected health information (PHI) on behalf of, or provide services to, a covered entity.
Entities required to comply with the HIPAA Privacy Rule include health plans, health care clearinghouses, and health care providers that conduct certain transactions electronically—collectively known as covered entities—as well as their business associates. Business associates are individuals or entities that perform certain functions or activities that involve the use or disclosure of protected health information (PHI) on behalf of, or provide services to, a covered entity.