“Three can keep a secret if two of them are dead.”
– Benjamin Franklin
The HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information. The Privacy Rule applies to covered entities—health plans, health care clearinghouses and most health care providers—and their business associates.
What’s in the Rule?
Limits and conditions on the uses and disclosures of protected health information (PHI) that can be made without an individual’s authorization while giving individuals rights over their PHI, including the right to receive a notice from covered entities regarding their privacy practices; and sets requirements and appropriate safeguards to protect the privacy of PHI.
If your company offers a health plan, this rule applies to you. Contact a BenefitCorp consultant to make sure you are compliant.
Related Links:
http://www.hipaa-101.com/hipaa-privacy.htm
https://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/agreements/filefax/index.html