HIPAA

Health Insurance Portability and Accountability Act (US, 1996) — protects health information. The Privacy Rule + Security Rule cover AI that processes protected health information (PHI). HHS guidance + the 21st Century Cures Act + ONC's HTI-1 rule shape AI-specific obligations for covered entities and business associates.

Framework references

• HIPAA Privacy Rule
• HIPAA Security Rule
• ONC HTI-1

Relevant Responsible AI Studio tools

• /tools/dpa-generator
• /tools/policy-generator

More regulation + law terms

• AI Office →
• AIDA + CPPA (Canada, lapsed) →
• Annex III (EU AI Act) →
• CCPA / CPRA →

See the full 80-term glossary →