How FairWarning Fulfills on HIPAA

June 24, 2020

The Health Insurance Portability and Accountability Act’s (HIPAA) Privacy, Security, and Breach Notification Rules protect the privacy and security of health information and provide individuals with certain rights to their protected health information. The three HIPAA rules are:
• The Privacy Rule, which sets national standards for when protected health information (PHI) may be used and disclosed by covered entities and their business associates, 
• The Security Rule, which specifies safeguards that covered entities and their business associates must implement to protect the confidentiality, integrity, and availability of electronic protected health information, 
• The Breach Notification Rule, which requires covered entities to notify affected individuals; U.S. Department of Health & Human Services (HHS); and, in some cases, the media of a breach of unsecured PHI.  Business associates are required to notify the covered entity of breaches at or by the business associate.

FairWarning Patient Privacy Intelligence fully addresses 5 of the protocol elements and partially addresses 26 of the protocol elements.  The FairWarning solution assists customers in addressing key HIPAA requirements ranging from Security Management Process, Workforce Security, Security Awareness, Sanctions, Security Incident Procedures to many others.  Many of the HIPAA requirements are problematic if not impossible to address without FairWarning.

Previous Document
How FairWarning Maps to the NIST Cybersecurity Framework
How FairWarning Maps to the NIST Cybersecurity Framework

While it was originally designed specifically for use by critical U.S. infrastructure systems, many entitie...

Next Document
Full Lifecycle IAM with FairWarning and SailPoint
Full Lifecycle IAM with FairWarning and SailPoint

Who's handling your data? You need to know who all your users are -- and FairWarning with SailPoint helps c...