Summary of HIPAA Security Rule
The Security Standard for the Protection of Electronic Protected Health Information, or the Security Rule, establish a national set of security standards for confidentiality, integrity, and availability of certain health information that is held or transferred in electronic form. These records are referred to as "electronic protected health information" or e-PHI.
A major goal of the Security Rule is to protect the privacy of individual's health information while allowing entities to adopt new technologies to improve the quality and efficiency of patient care. The Department of Health and Human Services, Office for Civil Rights is responsible for administering and enforcing these standards and may conduct complaint investigations and compliance reviews.
This is a summary of key elements of the Security Rule and not a complete or comprehensive guide to compliance. Go to Office of Information Security for additional information and resources.