HIPAA compliance and regulation

Health Insurance Portability and Accountability Act (HIPAA) is a federal law that establishes national standards for safeguarding protected health information. Maintaining HIPAA compliance is essential to protecting patients and avoiding penalties and fines. Get the latest HIPAA news and learn strategies for compliance with HIPAA and other healthcare privacy and security regulations.

Top Stories

Feature 12 Mar 2026
OCR director defends HIPAA updates: "The cost of doing nothing is very high"

OCR Director Paula M. Stannard addressed concerns about proposed HIPAA Security Rule updates, but said OCR has yet to decide which, if any, of the proposals will ultimately be finalized. Continue Reading
By
- Jill Hughes, Associate Editor
News 17 Feb 2026
OCR launches Part 2 civil enforcement program, new breach portal features

OCR will now accept notifications of substance use disorder patient record breaches as part of its new Part 2 civil enforcement program. Continue Reading
By
- Jill Hughes, Associate Editor

News 17 Mar 2016
HHS Reviews HIPAA Regulations for Workplace Wellness Programs

Employers must comply with HIPAA Regulations when collecting PHI for wellness programs as part of a health plan, HHS states. Continue Reading
By
- Jacqueline LaPointe, Executive Editor
News 25 Jan 2016
What are Top HIPAA Compliance Concerns, Obstacles?

Maintaining HIPAA compliance and the exposure of patient data following a breach and are among the top challenges for HealthITSecurity.com readers. Continue Reading
By
- Elizabeth Snell
News 18 Jan 2016
Understanding Physical Safeguards, Healthcare Data Security

Physical safeguards still present a great opportunity for healthcare organizations to ensure health data security. Continue Reading
By
- Sara Heath, Executive Editor
News 31 Jul 2015
How Do HIPAA Regulations Affect Judicial Proceedings?

HIPAA regulations must still be followed throughout legal proceedings. Continue Reading
By
- Elizabeth Snell
News 20 Oct 2014
HIPAA Best Practices: Acceptable Use Policies, Team Training

Creating Acceptable Use Policies (AUP) and then training your employees is essential for security at your healthcare organization. Continue Reading
By
- Lisa Myers of ESET North American
News 06 Oct 2014
AHIMA Releases Information Governance Principles for Healthcare

AHIMA determined that there are eight core principles involving data privacy and security for healthcare organizations to consider. Continue Reading
By
- Patrick Ouellette
News 17 Jun 2014
HIPAA Privacy Rule: Permitted PHI uses and disclosures

HealthITSecurity.com kicked off its HIPAA Privacy Rule series with a breakdown of permitted protected health information (PHI) uses and disclosures. Continue Reading
By
- Patrick Ouellette