Skip to main content

HIPAA: Your Right to Health Insurance and Privacy

image The Health Insurance Portability and Accountability Act (HIPAA) of 1996 was enacted in an effort to:

  • Establish national standards for electronic health information transactions
  • Secure the privacy of health data

In addition to protecting your privacy, HIPAA may also:

  • Reduce the chance that you will lose your health insurance
  • Make it easier for you to change insurance if you lose your coverage or do not have any insurance

Although it was designed in part to simplify matters, healthcare providers continue to struggle to understand and meet the requirements of the act. This gives you—as a healthcare consumer—all the more reason to understand what HIPAA basically means to your care. That way, you can be confident your information is being handled properly, and take action if it is not.

HIPAA’s Privacy Rule

HIPAA is perhaps most well known for its Privacy Rule. The intent of the Privacy Act is to give people more control over the sharing of their personal medical information, while at the same time making it easier for them to access details about their own health and healthcare.

Protecting Your Information From Others

According to the Privacy Rule, healthcare providers cannot reveal your health information to employers or others who are not entitled to view it. For example, they may not pass on information to companies who are thinking about hiring you or who want to sell you their latest cures or devices. Also, they may not share any information about mental health consultations.

The Privacy Rule protects information in your medical record, conversations your doctor has with nurses or other medical professionals about your care or treatment, information in your insurer's computer system, billing information, and most other health information.

However, there are cases when information can be legally shared. Your health information can be shared for certain reasons, including:

  • Doctors, hospitals, and insurance companies for purposes of billing and payment or to coordinate care
  • Anybody in or out of your family whom you designate to help you with your healthcare
  • Safety regulators looking into care at nursing homes
  • Public health officials under some circumstances, such as reporting when the flu is in your area
  • Police when a crime is committed

Granting You Greater Access to Your Own Information

The Privacy Act also gives you greater access to this information. Whereas at one time it was often difficult to view your own medical charts and files, you now have the right to know anything pertaining to your health. Under HIPAA, you are legally entitled to:

  • Receive a copy of your health record if you ask for it, including symptoms, diagnoses, test results, and medications.
  • Make corrections in the official file
  • Be told how your health information is used and who it is shared with
  • Choose whether you want your information to be shared

You also have the right to file a complaint with your healthcare provider or with the federal Office of Civil Rights if you think your information has been misused. Call the regional Civil Rights office nearest you for more information. You will be asked to provide the specifics of what happened and the reason for your complaint.

Buying or Changing Health Plans

HIPAA offers some protections if you have one of the following types of insurance coverage:

  • Health insurance through employers
  • Individual (non-employment based) health insurance
  • Coverage through a high-risk pool

While the law is complex and has limitations, here are some protections that HIPAA provides:

  • Allows you to buy insurance even if you have pre-existing condition
  • Stops health insurance companies from denying you coverage because of your health or your family member's health
  • Guarantees your right to buy insurance
  • Guarantees your right to renew your insurance

What Organizations Does HIPAA Apply to?

The HIPAA mandates apply to just about anybody who deals with your healthcare, including:

  • Doctors, dentists
  • Hospitals, clinics, nursing homes
  • Physical and occupational therapists
  • Drug and medical equipment providers
  • Third-party medical billing companies and clearinghouses
  • Health insurers, group healthcare plans, HMOs, Medicare, Medicaid, and other government sponsored healthcare programs

US Department of Health & Human Services

The US Department of Labor


Health Canada

Healthy Alberta


Frequently asked questions about portability of health coverage and HIPAA. US Department of Labor website. Available at: Accessed July 18, 2016.

Health information privacy. US Department of Health and Human Services Department website. Available at: Accessed July 18, 2016.

Statement of HIPAA portability rights. Arizona Health Care Cost Containment System website. Available at: Accessed July 18, 2016.

Understanding HIPAA privacy. US Department of Health & Human Services website. Available at: Accessed July 18, 2016.

Your health information privacy rights. US Department of Health and Human Services website. Available at: Accessed July 18, 2016.

Last reviewed July 2016 by Michael Woods, MD  Last Updated: 8/12/2014