Skip to main content

What is HIPAA compliance?

FAQ resource for your migration project.

FAQ resource for What is HIPAA compliance?.

Answer

HIPAA (the Health Insurance Portability and Accountability Act) is a US law that sets standards for protecting sensitive patient health information, known as protected health information (PHI). Its Security Rule requires administrative, physical, and technical safeguards such as access controls, encryption, and audit logging, while the Privacy Rule governs how PHI may be used and disclosed. Software vendors that handle PHI on behalf of healthcare organizations are typically considered business associates and must sign a Business Associate Agreement (BAA).