HIPAA Security Rule

What is the Security Rule?

The security rule is a HIPAA regulation that addresses the creation, receipt, maintenance, transmission of electronic PHI (ePHI)

The goals of the Security Rule are to:

  • Maintain confidentiality of stored and transmitted ePHI
  • Protect ePHI from unauthorized creation, modification, and deletion
  • Ensure ePHI is available to authorized individuals or entities when needed

The three types of security safeguards are Administrative, Physical, and Technical

What constitutes “Secured PHI”?

  • PHI protected by a technology or methodology specified by the government
  • Rendered “unusable, unreadable, or indecipherable” to unauthorized persons
  • Shredded/destroyed so that is cannot be read or reconstructed

By adhering to the three security safeguards, which are covered in depth in the next lessons, you can ensure that PHI is secured.