gptkbp:instanceOf
|
gptkb:United_States_federal_law
|
gptkbp:alsoKnownAs
|
gptkb:Standards_for_Privacy_of_Individually_Identifiable_Health_Information
|
gptkbp:appliesTo
|
gptkb:United_States
business associates
covered entities
|
gptkbp:awardedBy
|
individual rights to access health information
individual rights to request corrections
individual rights to receive an accounting of disclosures
|
gptkbp:codifiedIn
|
gptkb:45_CFR_Part_160_and_Subparts_A_and_E_of_Part_164
|
gptkbp:doesNotPreempt
|
state laws that are more stringent
|
gptkbp:enactedBy
|
gptkb:United_States_Congress
|
gptkbp:enforcedBy
|
gptkb:U.S._Department_of_Health_and_Human_Services
|
gptkbp:excludes
|
de-identified health information
|
https://www.w3.org/2000/01/rdf-schema#label
|
HIPAA Privacy Rule
|
gptkbp:partOf
|
gptkb:Health_Insurance_Portability_and_Accountability_Act
|
gptkbp:penalty
|
civil monetary penalties
criminal penalties
|
gptkbp:permits
|
certain disclosures without patient authorization
disclosures for treatment, payment, and healthcare operations
|
gptkbp:prohibits
|
unauthorized use or disclosure of protected health information
|
gptkbp:protectedBy
|
individually identifiable health information
|
gptkbp:purpose
|
to safeguard medical information privacy
|
gptkbp:regulates
|
use and disclosure of protected health information
|
gptkbp:relatedTo
|
gptkb:HIPAA_Breach_Notification_Rule
gptkb:HIPAA_Security_Rule
gptkb:HITECH_Act
|
gptkbp:requires
|
minimum necessary standard for disclosures
covered entities to provide a Notice of Privacy Practices
|
gptkbp:startDate
|
April 14, 2003
|
gptkbp:subject
|
gptkb:Office_for_Civil_Rights_enforcement
|
gptkbp:bfsParent
|
gptkb:Health_Insurance_Portability_and_Accountability_Act
gptkb:Privacy_Rule
gptkb:42_U.S.C._§_1320d_et_seq.
|
gptkbp:bfsLayer
|
6
|