Who Is Required To Follow HIPAA?

• A "covered entity" is defined as a health care provider or clearing house that transmits personal health information either written, spoken or electronically. The following are considered covered entities and must follow H.I.P.A.A. standards: hospitals; clinics; physicians; allied providers; labs; health plan payers; health clearinghouses; and alternative medical practitioners.
  
  

What Information is Protected?

• Any information that can identify a patient must be protected. Information such as: name; date of birth; phone numbers; Social Security numbers; medical charts; voice records; record numbers; health plan numbers; and beneficiaries.
  
  

How is My Information Protected?

• Covered entities are required to take certain measures to protect a patient's identity. This can be done in the following ways: locking file cabinets behind locked doors; keeping appointment books closed so that information is not seen by other people; keeping electronic documents safe by way of firewall, encryption, passwords, and anti-virus software; and keeping access to information limited only to what is necessary to carry out the function of the business or for employees to do their job.