Skip to main content
U.S. flag

An official website of the United States government

Return to Search

Privacy and Security Information

Guidance for privacy and security information with respect to HIPAA.

Final

Issued by: Centers for Medicare & Medicaid Services (CMS)

Issue Date: August 02, 2020

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was enacted to improve the efficiency and effectiveness of the nation’s health care system.

The law includes provisions to establish national standards for electronic health care transactions and national identifiers for providers, health plans, and employers. It also defines requirements for the privacy and security of protected health information.

Privacy and Security

To protect people’s personal health information, HIPAA includes privacy and security rules.

The HHS Office for Civil Rights (OCR) offers privacy and security education resources.

Go to the OCR website to learn more about HIPAA privacy and security laws, or to file a complaint.

HHS is committed to making its websites and documents accessible to the widest possible audience, including individuals with disabilities. We are in the process of retroactively making some documents accessible. If you need assistance accessing an accessible version of this document, please reach out to the guidance@hhs.gov.

DISCLAIMER: The contents of this database lack the force and effect of law, except as authorized by law (including Medicare Advantage Rate Announcements and Advance Notices) or as specifically incorporated into a contract. The Department may not cite, use, or rely on any guidance that is not posted on the guidance repository, except to establish historical facts.