Skip subpage navigation
The Health Insurance Portability and Accountability Act (HIPAA) applies to your protected health information (PHI). Your PHI is any information that:
- Identifies you;
- Is about your health or demographics;
- Is maintained by a covered entity or business associate; and
- Is related to your treatment, your medical condition, and the related payment for that condition as maintained by a covered entity or business associate.
The DHA Privacy and Civil Liberties Office (PCLO) helps the Military Health System (MHS) comply with the following HIPAA Rules:
- The HIPAA Privacy Rule defines how your PHI should be safeguarded, limits when it can be used and disclosed without your authorization, and ultimately gives you some control over your own PHI.
- The HIPAA Security Rule defines how your PHI should be protected and transferred when maintained electronically.
- The HIPAA Breach Notification Rule defines when your PHI has been inappropriately used or disclosed (see Breaches of PII and PHI page) and describes the breach response obligations of a covered entity.
The Chief of the DHA Privacy Office is the appointed HIPAA Privacy Officer and HIPAA Security Officer, and has authority over the HIPAA Privacy and Security programs at DHA.
For more information DHA’s HIPAA compliance program, please read the DHA’s HIPAA Privacy and HIPAA Security Core Tenets Policy Statement.
You also may be interested in...
Policy
Jan 6, 2022
.PDF |
243.26 KB
The HIPAA Compliant Business Associate Agreement complies with the Health Insurance Portability and Accountability Act (HIPAA) Privacy, Security, Breach and Enforcement Rules (HIPAA Rules).
- Identification #: N/A
- Type: Guideline
Technical Document
Jul 25, 2019
.PDF |
85.70 KB
This graphic dashboard depicts MHS change analysis information pertaining to the reviews of the X12 Version 7030 Draft Implementation Guides.
Policy
Mar 13, 2019
This issuance, in accordance with the authority in DOD Directive 5124.02, establishes policy and assigns responsibilities for DOD compliance with federal law governing health information privacy and breach of privacy; integrating health information privacy and breach compliance with general information privacy and security requirements in accordance ...
- Identification #: DODI 6025.18
- Type: Instruction
Technical Document
Sep 28, 2018
.PDF |
18.26 KB
Connecting with Local SIT
Form/Template
Nov 3, 2014
.PDF |
363.14 KB
The Health Information Privacy HIPAA Complaint Form is used by DHA to proceed with a complaint. DHA uses the information provided to determine if DHA has jurisdiction and, if so, how to process your complaint.
Fact Sheet
May 14, 2014
.PDF |
703.77 KB
This document represents an updated mapping of the HIPAA Security Rule to select DOD policies and IA controls. It does not constitute the rendering of legal advice or an exhaustive list of all possible mappings of the Security Rule to DOD policies or IA controls. The document is intended to provide general information and to allow different ...
Policy
May 1, 2014
The HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically. The HIPAA Security Rule establishes national standards to protect ...
- Identification #: N/A
- Type: Federal Regulation
Policy
Mar 14, 2014
.PDF |
5.79 MB
This MOU establishes a framework governing inter-Departmental transfer of PIII/PHI of beneficiaries who receive health care and/or other benefits from either Department. This MOU revises the MOU on "Defining Data-Sharing Between the Departments," executed in May and June of 2005.
- Identification #: N/A
- Type: Memorandum
Publication
Oct 1, 2013
.PDF |
1.50 MB
The MHS Notice of Privacy Practices (NoPP) describes how medical information about you may be used and disclosed and how you can get access to this information. This is a print-ready, Tri-fold version of the brochure, measuring 8.5” x 14” (landscape/2-sided).
Publication
Oct 1, 2013
.PDF |
294.39 KB
The MHS Notice of Privacy Practices (NoPP) describes how medical information about you may be used and disclosed and how you can get access to this information. This is a print-ready, portrait version of the brochure in Spanish - Latin American, measuring 8.5” x 11” (vertical).
Publication
Oct 1, 2013
.PDF |
377.00 KB
The MHS Notice of Privacy Practices (NoPP) describes how medical information about you may be used and disclosed and how you can get access to this information. This is a print-ready, portrait version of the brochure in Vietnamese, measuring 8.5” x 11” (vertical).
Publication
Oct 1, 2013
.PDF |
260.09 KB
The MHS Notice of Privacy Practices (NoPP) describes how medical information about you may be used and disclosed and how you can get access to this information. This is a print-ready, portrait version of the brochure in Thai, measuring 8.5” x 11” (vertical).
Publication
Oct 1, 2013
.PDF |
301.45 KB
The MHS Notice of Privacy Practices (NoPP) describes how medical information about you may be used and disclosed and how you can get access to this information. This is a print-ready, portrait version of the brochure in Portuguese - Brazilian, measuring 8.5” x 11” (vertical).
Publication
Oct 1, 2013
.PDF |
407.17 KB
The MHS Notice of Privacy Practices (NoPP) describes how medical information about you may be used and disclosed and how you can get access to this information. This is a print-ready, portrait version of the brochure in Korean, measuring 8.5” x 11” (vertical).
Publication
Oct 1, 2013
.PDF |
308.90 KB
The MHS Notice of Privacy Practices (NoPP) describes how medical information about you may be used and disclosed and how you can get access to this information. This is a print-ready, portrait version of the brochure in Turkish, measuring 8.5” x 11” (vertical).
You are leaving Health.mil
The appearance of hyperlinks does not constitute endorsement by the Department of Defense of non-U.S. Government sites or the information, products, or services contained therein. Although the Defense Health Agency may or may not use these sites as additional distribution channels for Department of Defense information, it does not exercise editorial control over all of the information that you may find at these locations. Such links are provided consistent with the stated purpose of this website.
You are leaving Health.mil
View the external links disclaimer.
Last Updated: March 25, 2024