On April 14, 2003, the new Health Insurance Portability and Accountability Act (HIPAA) privacy regulations went into effect, which require protection of Protected Health Information (PHI) and limit the disclosure of this information without the consent of the individual. Certain Department programs are covered by these HIPAA regulations.
For individuals receiving services from HIPAA-covered programs:
If you are a recipient of the services funded by one of these covered programs, you will receive, at the time of the provision of your first service, a copy of the Department's Notice of Privacy Practices.(opens in a new tab)
For vendors providing services funded by HIPAA-covered programs:
If you are a vendor providing certain service under the auspices of one of the HIPAA-covered programs, you will be required to sign the Business Associate Agreement.