Health Insurance Portability and Accountability Act (HIPAA)
A U.S. law passed to create national
standards for electronic healthcare transactions, among other purposes. HIPAA required the U.S. Department of Health
and Human Services to promulgate regulations to protect the privacy and
security of personal health information. The basic rule is that patients have to opt-in before their information
can be shared with other organizations—although there are important exceptions
such as for treatment, payment and healthcare operations.
Health Information Technology for Economic and Clinical Health Act (HITECH)
The Enacted as part of the American Recovery and Reinvestment Act of 2009, the HITECH Act, among other objectives, further addresses privacy and security issues involving PHI as defined by HIPAA. The HITECH privacy provisions include the introduction ...
Cyber Liability Insurance
A relatively new form of insurance protection that fills gaps typically not covered by General Commercial Liability plans. Cyber liability insurance may cover many breach-related expenses, including forensic investigations, outside counsel fees, ...
Protected Health Information (PHI)
Any individually identifiable health information transmitted or maintained in any form or medium that is held by a covered entity or its business associate; identifies the individual or offers a reasonable basis for identification; is created or ...
Gramm-Leach-Bliley Act (GLBA)
The commonly used name for The Financial Services Modernization Act of 1999. The act re-organized financial services regulation in the United States and applies broadly to any company that is “significantly engaged” in financial activities in the ...
Children’s Online Privacy Protection Act (COPPA) of 1998
A U.S. Federal law that applies to the operators of commercial websites and online services that are directed to children under the age of 13. It also applies to general audience websites and online services that have actual knowledge that they are ...