What is the HIPAA Breach Notification Rule?
The HIPAA Breach Notification Rule is a 2009 addition to the original Health Insurance Portability and Accountability Act of 1996 (HIPAA).
The HIPAA Breach Notification Rule requires HIPAA-covered entities and their business associates to provide notification following a breach of unsecured protected health information (PHI). Generally defined, a breach is an impermissible use or disclosure of PHI that compromises its security or privacy. Such use or disclosure of PHI is presumed to be a breach unless the covered entity or business associate demonstrates a low probability of compromised PHI.
The HIPAA Breach Notification Rule was introduced in conjunction with the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009. This Rule requires notification to affected individuals, the U.S. Department of Health and Human Services, and in some cases, the media, in the event of a breach of unsecured PHI.
Covered entities and business associates with access to PHI are obligated to ensure administrative, physical, and technical safeguards are in place to maintain the security of patient data. Additionally, they must have procedures in place should a data breach occur and comply with the HIPAA Privacy Rule.
Join us for a fireside chat with Christina Cacioppo, CEO and Co-founder of Vanta, and Eric Ries, author of The Lean Startup, as they share insights on navigating the modern startup journey. Discover how founders today can adapt to AI-driven innovation and utilize startup principles to find success in today’s dynamic landscape.
Join Vanta’s live product demo to discover how automation, continuous monitoring, and centralized workflows can streamline your GRC program, enhance control visibility, and improve vendor and buyer security management—all within a single platform.
Join us for a fireside chat with Christina Cacioppo, CEO and Co-founder of Vanta, and Eric Ries, author of The Lean Startup, as they share insights on navigating the modern startup journey. Discover how founders today can adapt to AI-driven innovation and utilize startup principles to find success in today’s dynamic landscape.
Join Vanta’s live product demo to discover how automation, continuous monitoring, and centralized workflows can streamline your GRC program, enhance control visibility, and improve vendor and buyer security management—all within a single platform.
Watch our webinar where leading cybersecurity experts Ciaran Martin and Victoria Baines will discuss findings from Vanta’s second annual State of Trust Report. Understand the risks facing UK organisations, why good security means good business and how to minimise manual security work through AI and automation.
Watch our webinar with Danny Sheridan, Co-founder and CEO at Fern (YC W23), and Brian Kuan, Product Marketing Manager at Vanta (YC W18), for a deep dive into why startups should prioritize compliance early in their journey, and how Vanta can help you become SOC 2-ready in as little as four weeks—giving time back for you to focus on building a company.
Curious about why compliance is so important, which businesses need it, and how Vanta's automation can help you quickly achieve it? Join Vanta’s 45-minute live product demo where you’ll learn how Vanta goes beyond compliance to enhance your overall security and trust management.
.svg)
.svg)
