The Health Insurance Portability and Accountability Act (HIPAA) of 1996 was enacted in 1996. The Act authorizes the Secretary of Health and Human Services to develop security and privacy standards to protect electronic healthcare information. The security and privacy standards cover the processing, storing and transmission of data to prevent inadvertent or unauthorized use or disclosure of an individual's health information. The Privacy Rule provides federal protections for personal health information held by covered entities and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so it permits the disclosure of personal health information needed for patient care and other important purposes. This Authoritative Source includes the Security requirements from the act.
RSA Archer provides authoritative source content related to the Privacy and Security requirements of this Act.
This content is available in English only.
Mappings for HIPAA to the RSA Archer Control Standard Library are available in the authoritative source content pack. This content includes questions associated with this authoritative source
The source of this content comes from the U.S. Health and Human Services website.
The HIPAA authoritative source content is available with the use of the RSA Archer Policy Program Management, RSA Archer IT Policy Program Management, and/or RSA Archer Authorization and Assessment use cases. No additional license is required.
To learn more about the Health Insurance Portability and Accountability Act (HIPAA) Authoritative Source Content:
To learn more about this content, please contact your Account Rep for additional details. For technical support questions, please open a support case or contact RSA Archer at archersupport@rsa.com for more information.