Corporate Compliance

Q&A: Who enforces the Health Insurance Portability and Accountability Act (HIPAA)?

Compliance Monitor, September 2, 2009

Q: Who enforces the Health Insurance Portability and Accountability Act (HIPAA)?

A:The Office of E-Health Standards and Services within the Centers for Medicare & Medicaid Services (CMS) enforces the transactions and code sets and national identifiers (employer and provider identifiers) regulations of HIPAA. You may submts complaints electronically at https://htct.hhs.gov/aset/, or via paper at http://www.cms.hhs.gov/Enforcement/Downloads/HIPAANon-PrivacyComplaintForm.pdf  

The Office for Civil Rights (OCR) enforces the HIPAA Privacy and Security Rules. You may send complaints related to concerns about protected health information to OCR at http://www.hhs.gov/ocr/privacy/hipaa/complaints/index.html. CMS also enforces the insurance portability requirements under Title I of HIPAA. For more information about portability and how to obtain information or assistance, go to: http://www.cms.hhs.gov/HealthInsReformforConsume/01_Overview.asp
 
This question and answer appear on the Frequently Asked Questions section of the CMS Web site.

Most Popular