Health Insurance Portability and Accountability Act
United States federal statute enacted by the 104th United States Congress and signed into law by President Bill Clinton to modernize the flow of healthcare information, stipulate how personally identifiable information maintained by the healthcare and healthcare insurance industries should be protected from fraud and theft.
Global Scope & Applicability
Covered Entities (Healthcare providers, health plans, healthcare clearinghouses) and their Business Associates.
Core Principles & Obligations
- 1
Privacy Rule
- 2
Security Rule
- 3
Breach Notification Rule
- 4
Omnibus Rule
Technical Implementation Examples
Automated detection of unencrypted AWS S3 buckets violating Health Insurance Portability and Accountability Act policies.
Real-time interception of unauthorized IAM role escalation attempts.
Continuous audit logging and Zero-Knowledge Proof attestation of compliant clusters.
Non-Compliance Penalties
Financial Fines
Ranging from $137 to $68,928 per violation, up to an annual maximum of $2,067,813 for repeating violations.
Legal Liability
Criminal penalties up to 10 years imprisonment for willful neglect and malicious intent.
Master North America Compliance with EchelonGraph
We are building the ultimate continuous compliance platform. Our upcoming AI agents will automatically map your cloud footprints against these precise Health Insurance Portability and Accountability Act legal controls, alerting you to architectural drift before auditors do.