Privacy Rule

GPTKB entity

Statements (24)
Predicate Object
gptkbp:instanceOf gptkb:legislation
gptkbp:allows disclosure for treatment, payment, and healthcare operations
gptkbp:alsoKnownAs gptkb:HIPAA_Privacy_Rule
gptkbp:appliesTo business associates
covered entities
gptkbp:codifiedIn gptkb:45_CFR_Part_160_and_Subparts_A_and_E_of_Part_164
gptkbp:doesNotPreempt state laws that are more stringent
gptkbp:enforcedBy gptkb:U.S._Department_of_Health_and_Human_Services
gptkbp:excludes de-identified health information
https://www.w3.org/2000/01/rdf-schema#label Privacy Rule
gptkbp:partOf gptkb:HIPAA
gptkbp:penalty violations with civil and criminal penalties
gptkbp:protectedBy protected health information
gptkbp:provides individual rights to access health information
individual rights to request accounting of disclosures
individual rights to request amendment of health information
gptkbp:regulates use and disclosure of protected health information
gptkbp:requires notice of privacy practices
minimum necessary standard for disclosures
patient authorization for certain disclosures
gptkbp:startDate April 14, 2003
gptkbp:bfsParent gptkb:Financial_Privacy_Rule
gptkb:GLBA
gptkbp:bfsLayer 5