top of page

The Breach Notification Rule Summary

The Breach Notification Rule:

  • Requires HIPAA covered entities and their business associates to provide notification following a breach of unsecured protected health information.

  • Defines a breach.

  • Defines Unsecured Protected Health Information and provides guidance.

  • Establishes the Breach Notification Requirements.

  • Explains the Individual Notice.

  • Explains the Media Notice.

  • Explains the Notice to the Secretary.

  • Explains the Notification by a Business Associate.

  • Explains the Administrative Requirements and Burden of Proof.


bottom of page