What is a "covered entity" under HIPAA?
The term "covered entity" under the HIPAA Privacy Rule refers to three specific groups, including health plans, health care clearinghouses, and health care providers that transmit health information electronically. Covered entities under the HIPAA Privacy Rule must comply with the Rule's requirements for safeguarding the privacy of protected health information. Below is a more detailed list of those who fall under the covered entity category under HIPAA.
Health Care Providers
This includes all health care providers, regardless of practice size, provided that they transmit health information electronically. The specific electronic transactions subject to this rule are those that are covered under the HIPAA Transactions Rule. Providers subject to the Privacy rule include:
o Nursing Homes, and,
Health Care Clearinghouses
Summary of the HIPAA Privacy Rule: Who is Covered by the Privacy Rule - Developed by the Office for Civil Rights at the U.S. Department of Health and Human Services (2003). This site provides a summary of the HIPAA Privacy Rule.
For Covered Entities - Developed by the Office for Civil Rights at the U.S. Department of Health and Human Services. This information specifically targets covered entities, providing guidance with respect to privacy and security.
Are You a Covered Entity (CMS) - Developed by Centers for Medicare & Medicaid Services. This site provides assistance in determining if a group or an individual is a covered entity or not.
E-mail the HealthIT e-mail box: firstname.lastname@example.org