Health Insurance Portability and Accountability Act (HIPAA)

In order to be SOC 2 Type II certified, Dataddo has to be compliant with The Health Insurance Portability and Accountability Act of 1996 (HIPAA).

What is HIPAA?

HIPPA is a United States Act that aims to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.The US Department of Health and Human Services (HHS) issued the HIPAA Privacy Rule to implement the requirements of HIPAA. The HIPAA Security Rule protects a subset of information covered by the Privacy Rule.

What are key HIPAA principles?

HIPAA's key privacy principles are:

• Receive, use, and disclose PHI for purposes of treatment, payment, and healthcare operations.
• Adopt reasonable measures to protect PHI from unauthorized access, use, or disclosure.
• Limit the amount of information you receive, use, and disclose to what is reasonably necessary for you to do your job.