Skip to main content

Stratis Health Twitter Stratis Health LinkedIn Stratis Health YouTube
Lock, keyboard and mouse

Section Links


Privacy & Security

An introduction and overview of the HIPAA Privacy Rule including MN and ND state requirements. An introduction and overview of the HIPAA Security Rule’s administrative, physical and technical safeguards. An introduction and overview of the HIPAA Omnibus Rule of 2013.

“There's still a culture that privacy and security are barriers to the provision of health. We see privacy and security actually as being facilitators and that, when the message from the top is that privacy and security are good for the patient and good for business, we will see more of an attitude that these are things that organizations should be doing very willingly and will see the benefit to them and their patients.”

- Joy Pritts

The Health Insurance Portability and Accountability Act (HIPAA) of 1996 was created as a federal requirement to build a national framework designed to protect patient information being created, shared, and maintained across a variety of health care systems. HIPAA Privacy and Security is intended to:

  • Create a national framework for protecting protected health information on all media types
  • Provides the patient’s right over their protected health information
  • Create required safeguards to protect the confidentiality, integrity, and accessibility of electronic health information

The Omnibus Rule created additional provisions for the HIPAA privacy and security rule, which creates more mandates and safeguards to be used to protect patient information. The goal is to help support the quality of health care and the advancement of technology use in health care.

This Privacy & Security portal was originally developed by the Regional Extension Center for Minnesota and North Dakota. REACH, co-led by Stratis Health, was federally funded through the Office of the National Coordinator, Department of Health and Human Services.