Lexology August 5, 2025
Bryan Cave Leighton Paisner LLP

Whenever the topic of health and medical data comes up, the prevailing assumption often is that any of this information is subject to the federal Health Insurance Portability and Accountability Act (HIPAA) just by virtue of being health and medical data. In reality, though, HIPAA actually applies to a much narrower set of organizations than generally understood, and the consequences for getting it right are significant. This alert provides a brief roadmap for companies trying to understand their role under HIPAA and the related implications.

Are you a covered entity?

HIPAA’s privacy and security rules apply to covered entities and their service provider, business associates. While both covered entities and business associates are directly responsible for complying with HIPAA and...

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: Govt Agencies, HIPAA, Provider
Related Articles:
OCR Kicks Off 2026 with Reminders about "System Hardening" for HIPAA Covered Entities
Providers Evaluate Security as Updated HIPAA Compliance Looms
Updates to HIPAA Notice of Privacy Practices Required by February 16, 2026
How Healthcare Organizations Can Navigate Security Changes Linked to HIPAA Updates
Preparing for the HIPAA Security Rule Update

Share Article