Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters

What is the HIPAA Enforcement Rule?

The HIPAA Enforcement Rule is a 2006 addition to the original Health Insurance Portability and Accountability Act of 1996 (HIPAA). HIPAA required the Secretary of the U.S Department of Health and Human Services (HHS) to develop regulations protecting the privacy and security of certain health information. 


The HIPAA Enforcement Rule introduced the ability for the U.S. Department of Health and Human Services (HHS) to fine organizations for avoidable ePHI breaches. HHS’s Office for Civil Rights (OCR) is responsible for this enforcement, which it achieves through compliance reviews, outreach to encourage compliance, and investigating complaints.


Financial penalties and other HIPAA sanctions act as a deterrent against HIPAA violations while ensuring covered entities are held accountable for protecting patients' privacy, the confidentiality of health data, and providing patients with access to their health records on request. The penalty structure for HIPAA violations is tiered and based on the knowledge a covered entity had of the violation.


The financial and other penalties incurred due to HIPAA violations and data breaches can be extraordinarily costly—from significant fines that vary by violation, organizational costs of issuing notifications and mitigating the damages following breaches, to the possibility of criminal prosecution.

Additional resources you might like:

Security
Blog
What is continuous security monitoring?

What is continuous security monitoring and why is it crucial to your business? Learn about continuous monitoring and best practices for ensuring security within your organization.

Product updates
Blog
Introducing new products to secure and accelerate an AI-powered future

Today we’re excited to announce new and upcoming product capabilities that empower you to accelerate innovation and strengthen security in an increasingly AI-driven world.

Compliance
Event
Leverage Security and Compliance to Win Over Prospects

Curious about how security and compliance can help you build trust and win over prospects? On December 13th at 8:30am PST / 4:30pm GMT, join our AMAA

Get compliant and
build trust, fast.