When it comes to our health, most of us would like to believe our medical and health information is kept private. We like to believe that only the people that are authorized to view these records should have access to such sensitive information. With technology in the form of information systems becoming more prevalent in the healthcare field, web developers and the like have to make sure they follow patient privacy laws.
The Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its regulations (the “Privacy Rule” and the “Security Rule”) protect the privacy of an individual’s health information and govern the way certain health care providers and benefits plans collect, maintain, use and disclose protected health information. The Privacy Rule applies to all forms of individuals’ protected health information, whether electronic, written, or oral. The Security Rule, a Federal law that protects health information in electronic form, requires entities covered by HIPAA to ensure that electronic protected health information is secure.