Privacy & Data 🏛 HHS

HIPAA — Health Information Privacy

HIPAA requires covered entities (healthcare providers, health plans, clearinghouses) and their business associates to protect individually identifiable health information. Requirements include Privacy Rule, Security Rule, and Breach Notification Rule. Penalties range from $100 to $1.9 million per violation category.

Source Agency
HHS — Office for Civil Rights

Last Verified
March 1, 2026

Next Review
May 30, 2026

View Official Source ↗

← Back to Federal Law More Privacy & Data →