HIPAA

HIPAA - Health Insurance Portability and Accountability Act of 1996

The privacy provisions of the federal law, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), apply to health information created or maintained by health care providers who engage in certain electronic transactions, health plans, and health care clearinghouses.

Note: HIPAA privacy standards became effective in April 2003 and the HIPAA security standards will go into effect April 21, 2005.

EDUCAUSE has identified links concerning HIPAA that may be useful to the higher education community. Many of these links have been contributed by EDUCAUSE members. If you have additional resources you would like to include on this page, send the information to: contribute@educause.edu

Federal Government Resources

HIPAA Security Standards
Health Insurance Reform: Security Standards; Final Rule. February 20, 2003.

HIPAA Privacy Standards
Standards for Privacy of Individually Identifiable Health Information; Final Rule. August 14, 2002.

Health Insurance Portability and Accountability Act of 1996 (HIPAA)
Public Law 104-191, passed by the 104th Congress

Office for Civil Rights - HIPAA
The privacy provisions of the federal law, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), apply to health information created or maintained by health care providers who engage in certain electronic transactions, health plans, and health care clearinghouses.

Centers for Medicare & Medicaid Services
(CMS) Centers for Medicare & Medicaid Services is responsible for implementing various unrelated provisions of HIPAA. This page contains a directory of CMS's business activities with regard to HIPAA.
Press Release - CMS Named to Enforce HIPAA Transaction and Code Set Standards 10/15/02

Non-governmental Organizations Resources

Expert HIPAA Compliance Solutions
This site offers a HIPAA compliance discussion area, news updates, a weekly newsletter, links to resources, readiness checklists, and information for health care providers and employers.

Guidelines for Academic Medical Centers on Security and Privacy
Association of American Medical Colleges' Guidelines for Academic Medical Centers on Security and Privacy. This site offers practical strategies for addressing the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA.ORG
A collection of miscellaneous HIPAA links. Categories include laws, identifiers, transactions, enforcement, security, privacy, codes and discussion groups.

HIPAAcomply
This site includes information on HIPAA news, timeline, discussion lists, events, legislation and technology.

HIPAAdvisory
This site includes information regarding HIPAA regulations, news updates, white papers, discussion lists and FAQs.

Implementation Guides Adopted for use under HIPAA
Washington Publishing Company (WPC) specializes in managing and distributing Electronic Data Interchange (EDI) information, primarily in the form of documentation for organizations that develop, maintain, and implement EDI standards.

InfoShare HIPAA Information
InfoShare is concerned primarily with the research implications of the privacy regulations.

ReadyforHIPAA.com
The ReadyforHIPAA.com web site is intended primarily for IT professionals in search of information and resources on the issues involved with complying with HIPAA regulations.

Strategic National Implementation Process
HIPAA resources include transactions code sets and standards and HIPAA vendor solutions

Universities and HIPAA

• New York University School of Medicine
• Ohio University Without Boundaries
• Oregon Health & Science University
• Stanford University Medical Center
• University of Alabama at Birmingham
• University of California, San Francisco Medical Center
• University of Illinois at Chicago College of Medicine
• University of Kentucky Chandler Medical Center
• University of Minnesota, Privacy and Security Project
• University of Wisconsin, Madison
• Yale University