Freedom of Information Act (FOIA)
Guidance for the highlights and requirements of the Freedom of Information Act.
Issued by: Centers for Medicare & Medicaid Services (CMS)
Issue Date: January 01, 2020
The Privacy Rule of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) establishes national standards to protect individuals’ medical records and other personal health information. The HIPAA Privacy Rule also gives individuals rights over their health information, like getting a copy of their records and seeking correction. The Rule applies to 3 types of HIPAA covered entities, like health plans, health care clearinghouses, and health care providers that conduct certain health care transactions electronically to safeguard protected health information (PHI) entrusted to them.
For more information on HIPAA, visit hhs.gov/hipaa/index.html
HHS is committed to making its websites and documents accessible to the widest possible audience, including individuals with disabilities. We are in the process of retroactively making some documents accessible. If you need assistance accessing an accessible version of this document, please reach out to the guidance@hhs.gov.
DISCLAIMER: The contents of this database lack the force and effect of law, except as authorized by law (including Medicare Advantage Rate Announcements and Advance Notices) or as specifically incorporated into a contract. The Department may not cite, use, or rely on any guidance that is not posted on the guidance repository, except to establish historical facts.