What is HIPAA?
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a U.S. legislation that provides data privacy and security provisions for safeguarding medical information.
In order to be HIPAA compliant, a business needs to comply with the applicable HIPAA rules and regulations. This includes having in place a framework for protecting protected health information (PHI), and making sure the company does not violate HIPAA regulations.
HIPAA applies to covered entities and their business associates. A covered entity is a healthcare provider, a health plan, or a healthcare clearinghouse. A business associate is a person or entity that performs certain functions on behalf of a covered entity and handles PHI.