General Question for the Week of March 27, 2017


Which federal government department enforces the HIPAA rules? Can you provide examples of a violation?


The Department of Health & Human Services Office for Civil Rights enforces the HIPAA privacy, security, and breach-notification rules. Violations may result in civil monetary penalties. In some cases, criminal penalties enforced by the U.S. Department of Justice may apply.

The following are common noncompliance issues:

• Impermissible protected health information (PHI) uses and disclosures
• Lack of PHI safeguards
• Lack of patients’ access to their PHI
• Use or disclosure of more than the minimum necessary PHI
• Lack of administrative electronic PHI safeguards.

Print Friendly, PDF & Email

CPT® copyright 2023 American Medical Association (AMA). All rights reserved.

Fee schedules, relative value units, conversion factors and/or related components are not assigned by the AMA, are not part of CPT, and the AMA is not recommending their use. The AMA does not directly or indirectly practice medicine or dispense medical services. The AMA assumes no liability for data contained or not contained herein.

CPT is a registered trademark of the American Medical Association.

Happy World Health Day! Our exclusive webcast, ‘2024 SDoH Update: Navigating Coding and Screening Assessment,’  is just $99 for a limited time! Use code WorldHealth24 at checkout.

SPRING INTO SAVINGS! Get 21% OFF during our exclusive two-day sale starting 3/21/2024. Use SPRING24 at checkout to claim this offer. Click here to learn more →