🇺🇸 Live Workplace Safety & WHS/OHS

HIPAA

Establishes national standards for the protection of individually identifiable health information, including privacy, security, and breach notification requirements. Applies to covered entities such as health plans, healthcare providers, and healthcare clearinghouses, as well as their business associates.

View official source document

102

Rules extracted

1,696

Obligations decomposed

16.6x

Avg obligations per rule

🇺🇸 United States

Jurisdiction

What AuditDSS covers

Source

1

Regulation

Extracted

102

Rules

Decomposed

1,696

Obligations

16.6x

Decomposition ratio

Each rule is decomposed into an average of 16.6 atomic obligations — the smallest testable units that can be independently violated.

Fully extracted & scored

All 1,696 obligations have been decomposed, titled, risk-scored, and embedded for semantic matching.

Risk scoring

Every obligation in HIPAA is scored across independent risk dimensions:

W

Obligation Weight

How critical within the regulatory framework

L

Violation Likelihood

How often breached in practice

E

Enforcement Evidence

Regulator enforcement history and penalties

C

Cascade Dependency

How many obligations depend on this one

Regulatory details

Full title
HIPAA
Regulatory body
HHS Office for Civil Rights
Jurisdiction
🇺🇸 United States
Document type
legislation
Effective date
April 14, 2003
Industry
Workplace Safety & WHS/OHS
Official source
View source document ↗

Who this applies to

covered entitieshealth planshealthcare clearinghouseshealthcare providersbusiness associates

Key requirements

  • privacy rule compliance
  • security rule safeguards
  • breach notification within 60 days
  • minimum necessary standard
  • patient access rights
  • business associate agreements
  • risk analysis

Frequently asked questions about HIPAA

What is HIPAA?
Establishes national standards for the protection of individually identifiable health information, including privacy, security, and breach notification requirements. Applies to covered entities such as health plans, healthcare providers, and healthcare clearinghouses, as well as their business associates.

Who does HIPAA apply to?
HIPAA applies to covered entities, health plans, healthcare clearinghouses, healthcare providers, business associates.

How many obligations does HIPAA contain?
AuditDSS has decomposed HIPAA into 1,696 atomic obligations from 102 rules. Each obligation is independently testable and risk-scored.

What are the key requirements of HIPAA?
The key requirements include: privacy rule compliance, security rule safeguards, breach notification within 60 days, minimum necessary standard, patient access rights, business associate agreements, risk analysis.

How can I assess my HIPAA compliance?
Upload your compliance policy to AuditDSS. The platform maps your document against all 1,696 HIPAA obligations using deterministic AI scoring — not checklists or LLM summaries. You get a risk-scored gap analysis showing exactly which obligations are covered, partially covered, or missing.

Which jurisdiction enforces HIPAA?
HIPAA is enforced in United States by HHS Office for Civil Rights.

When did HIPAA come into effect?
HIPAA became effective on April 14, 2003.

What industry does HIPAA apply to?
HIPAA is primarily relevant to the Workplace Safety & WHS/OHS industry. AuditDSS covers 45 regulations in this industry sector.

Build a HIPAA compliance pack

Don't have a compliance policy yet? AuditDSS generates a complete compliance pack for HIPAA — alone or combined with other regulations your business needs. Every clause is mapped to specific obligations.

Policy

High-level commitments and governance framework covering HIPAA requirements.

Procedures

Step-by-step operational procedures to implement each policy commitment.

Forms & checklists

Ready-to-use forms, registers, and checklists for day-to-day compliance operations.

Multi-regulation

Combine HIPAA with other regulations into a single unified compliance pack for your business.

Build HIPAA compliance pack

Already have a policy? Assess it against HIPAA

1

Upload your document

Upload your compliance policy, program manual, or operational document. AuditDSS accepts any text-based document.

2

AI maps against 1,696 obligations

Your document is scored against every obligation in HIPAA. Each claim is mapped to the obligation tree and evaluated for coverage.

3

Risk-scored gap report

Receive every gap ranked by risk priority with remediation guidance, enforcement evidence, and cascade impact analysis.

Related regulations in Workplace Safety & WHS/OHS

🇦🇺 Live

AU Climate Disclosure

10 rules, 52 obligations
🇦🇺 Live

Fair Work Act 2009

16 rules, 260 obligations
🇦🇺 Live

Modern Slavery Act 2018

9 rules, 135 obligations
🇦🇺 Live

Privacy Act 1988

29 rules, 203 obligations
🇦🇺 Live

Model WHS Act

10 rules, 41 obligations
🇺🇸 Live

CCPA/CPRA

46 rules, 572 obligations
🇺🇸 Live

EPA Lead RRP

47 rules, 1,220 obligations
🇺🇸 Live

ERISA Fiduciary

26 rules, 920 obligations

Assess your HIPAA compliance

Upload your document and get a risk-scored gap analysis against 1,696 HIPAA obligations in under 5 minutes.

Start assessment Browse all regulations