Overview
HIPAA was established in 1996 to protect health insurance coverage for individuals who lose or change jobs, and to establish standards for electronic healthcare transactions and national identifiers for providers, health insurance plans, and employers (“Covered Entities“).
While there are numerous sections to HIPAA, there are two that stand out regarding information security requirements:
Covered entities must develop policies and procedures governing the protection of PHI, implement physical safeguards to PHI, and implement technical controls to computer systems to protect PHI.
References
Industry
How secure is your organization?
Speak with an information security expert to find out.
Consultation