Skip Navigation

Understanding Health Information Privacy

The HIPAA Privacy Rule provides federal protections for personal health information held by covered entities and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so that it permits the disclosure of personal health information needed for patient care and other important purposes. 

The Security Rule specifies a series of administrative, physical, and technical safeguards for covered entities to use to assure the confidentiality, integrity, and availability of electronic protected health information. 

For Consumers

Group of people of all age groupsGroup of people of all age groups

Learn more about how the Privacy and Security Rules protect your health information. 



For Covered Entities

Health care providersSurgeonsLearn more about which entities must comply with the Privacy and Security Rules, the requirements of the rules, and guidance available to help covered entities implement and maintain compliance with these requirements.

More Information About Health Information Privacy Under HIPAA

Special Topics

Related Links

Summary of the HIPAA Privacy Rule

Summary of the HIPAA Security Rule

Training Materials