Health Insurance Portability and Accountability Act (HIPAA) Authoritative Source Content

Document created by Susan Read-Miller Employee on May 20, 2018Last modified by Susan Read-Miller Employee on May 18, 2020
Version 5Show Document
  • View in full screen mode

The Health Insurance Portability and Accountability Act (HIPAA) of 1996 was enacted in 1996. The Act  authorizes the Secretary of Health and Human Services to develop security and privacy standards to protect electronic healthcare information. The security and privacy standards cover the processing, storing and transmission of data to prevent inadvertent or unauthorized use or disclosure of an individual's health information. The Privacy Rule provides federal protections for personal health information held by covered entities and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so it permits the disclosure of personal health information needed for patient care and other important purposes. This Authoritative Source includes the Security requirements from the act.


RSA Archer provides authoritative source content related to the Privacy and Security requirements of this Act.



This content is available in English only.



Mappings for HIPAA to the RSA Archer Control Standard Library are available in the authoritative source content pack. This content includes questions associated with this authoritative source


Content Source

The source of this content comes from the U.S. Health and Human Services website.


Licensing Restrictions

The HIPAA authoritative source content is available with the use of the RSA Archer Policy Program Management, RSA Archer IT Policy Program Management, and/or RSA Archer Authorization and Assessment use cases. No additional license is required.


For More Information

To learn more about the Health Insurance Portability and Accountability Act (HIPAA) Authoritative Source Content:


For Additional Support

To learn more about this content, please contact your Account Rep for additional details. For technical support questions, please open a support case or contact RSA Archer at for more information.